CVE-2025-0130
⚠️ highSummary
A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this condition will cause the firewall to enter maintenance mode. This issue does not affect Cloud NGFW or Prisma Access.
CVSS Score
7.5
High
EPSS Score
0.1
Exploit Probability
Published Date
2025-05-14
First Seen: 2026-01-05
📊 Relative Risk Intelligence
This CVE is Moderate Risk - more severe than 69.1% of all 321,136 vulnerabilities in our database.
#99,378
Above average severity
Severity Percentile
🎯 CISA SSVC Assessment Updated: May 15, 2025
🔍 Exploitation Status
None
No known exploits
⚙️ Automatable
NO
Requires human interaction
💥 Technical Impact
Partial
Limited system impact
🏆 Discovered By
Jari Pietila of Palo Alto Networks
SSVC data provided by
CISA
Last Modified
2025-10-06
Source
NVD 🔗
CVSS Vector 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Vector 4.0
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:C/RE:L/U:Amber
CWE IDs (Weakness Types)