CVE-2025-0130 | PAN-OS - Web Proxy Operational Intel

Executive Risk Summary

"A missing exception check in Palo Alto Networks PAN-OS software with the web proxy feature enabled allows an unauthenticated attacker to send maliciously crafted packets, causing the firewall to become unresponsive and eventually reboot. Repeated successful attempts will cause the firewall to enter maintenance mode, posing a significant risk to network security and availability."

Operational Audit Arsenal

Target Type Firmware Image

Target Asset PAN-OS

Standard Path Global Firmware

Manual Verification Required

This is a non-Windows asset (Palo Alto Networks). Use the target asset details and official path provided above to verify your current version against the official vendor advisories listed below.

Patch Impact Forecast

Reboot Required Likely

High

Internal Work Notes

CVE-2025-0130: PAN-OS Web Proxy vulnerability allows unauthenticated attackers to cause firewall reboot and potential maintenance mode, requiring immediate patching and verification.

Technical Intelligence & Operational Utilities • Delivered Weekly

Intelligence Sources

Official Advisoryhttps://security.paloaltonetworks.com/CVE-2025-0130

Related Palo Alto Networks Threats

CVE-2024-3400 CVSS 10

PAN-OS - GlobalProtect

CVE-2025-0107 CVSS 9.8

Expedition - Web UI

CVE-2024-5910 CVSS 9.8

Palo Alto Networks Expedition

Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.