CVE-2025-4231 — HIGH (7.2) — White Hats Nepal

Q: How severe is CVE-2025-4231?

CVE-2025-4231 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-4231?

Check the references section above for vendor advisories and patch information. Affected products include: Paloaltonetworks Pan-Os.

Vulnerability Description

A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform actions as the root user. The attacker must have network access to the management web interface and successfully authenticate to exploit this issue. Cloud NGFW and Prisma Access are not impacted by this vulnerability.

CVSS Score

7.2

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Paloaltonetworks	Pan-Os	>= 10.2.0, < 10.2.8

Related Weaknesses (CWE)

CWE-77

References

https://security.paloaltonetworks.com/CVE-2025-4231Vendor Advisory

FAQ

What is CVE-2025-4231?

CVE-2025-4231 is a vulnerability with a CVSS score of 7.2 (HIGH). A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform actions as the root user. The attacker must have network access to the manageme...

How severe is CVE-2025-4231?

CVE-2025-4231 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-4231?

Check the references section above for vendor advisories and patch information. Affected products include: Paloaltonetworks Pan-Os.