News

WTEN

Assetnote Discovers Additional Critical Vulnerability (CVE-2025-0108) in Palo Alto Networks Management Interface PAN-OS

QUEENSLAND, AUSTRALIA, February 12, 2025 /EINPresswire.com/ -- - Assetnote, a Searchlight Cyber company, has identified a new critical vulnerability in the Palo Alto ...
CRN

Palo Alto Networks: ‘Critical’ Firewall Vulnerability Has Seen Exploitation

The flaw affecting some internet-exposed firewall management interfaces had been initially disclosed Nov. 8. A critical-severity vulnerability affecting some internet-exposed Palo Alto Networks ...
Hosted on MSN

Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit

A critical zero-day vulnerability in Palo Alto Networks' firewall management interface that can allow an unauthenticated attacker to remotely execute code is now officially under active exploitation.… ...
Bleeping Computer

Palo Alto Networks patches two firewall zero-days used in attacks

Palo Alto Networks has finally released security updates for two actively exploited zero-day vulnerabilities in its Next-Generation Firewalls (NGFW). The first flaw, tracked as CVE-2024-0012, is an ...
Bleeping Computer

Hackers exploit authentication bypass in Palo Alto Networks PAN-OS

Hackers are launching attacks against Palo Alto Networks PAN-OS firewalls by exploiting a recently fixed vulnerability (CVE-2025-0108) that allows bypassing authentication. The security issue received ...
SDxCentral

Palo Alto Networks Emphasizes Hardening Guidance

Palo Alto Networks (PAN) has updated their informational bulletin, noting they “observed threat activity exploiting an unauthenticated remote command execution vulnerability against a limited number ...
CSOonline

Hackers gain root access to Palo Alto firewalls through chained bugs

A recently disclosed medium-severity bug was chained with critical, older bugs to gain root-level access to PAN firewall systems. A high-severity authentication bypass vulnerability in Palo Alto ...