Summary: Palo Alto Networks has issued a warning regarding active exploitation of a file read vulnerability (CVE-2025-0111) alongside two other flaws (CVE-2025-0108 and CVE-2024-9474) in PAN-OS firewalls. The exploitation attempts are increasing, targeting unpatched devices, with significant amounts of sensitive information potentially at risk. The U.S. CISA has added CVE-2025-0108 to its ‘Known Exploited Vulnerabilities’ catalog, urging timely updates.
Affected: PAN-OS firewalls
Keypoints :
- Active attacks are exploiting a chain of three vulnerabilities in PAN-OS, with significant risk to unpatched devices.
- Exploitation activity has escalated, with GreyNoise reporting an increase from two to 25 IP addresses actively targeting these vulnerabilities.
- Majority of exposed servers remain unpatched, with 65% vulnerable to at least one of the flaws.
Views: 7