Palo Alto Networks reported a critical authentication bypass vulnerability (CVE-2025-0108) in its PAN-OS, enabling unauthenticated attackers to access the administrator interface. Following its disclosure on Feb. 12, 2025, security company GreyNoise observed active attempts to exploit the flaw. Palo Alto ensured customer security is paramount, urging timely application of security updates. The potential for exploiting CVE-2025-0108 in conjunction with other vulnerabilities warrants immediate attention, as many systems are left exposed, potentially risking severe consequences for affected organizations.
Palo Alto Networks confirmed ongoing exploitation of CVE-2025-0108, highlighting the importance of securing Internet-facing PAN-OS administrator interfaces to mitigate risks.
Threat intelligence from GreyNoise revealed nearly 30 unique IP addresses attempting to exploit CVE-2025-0108 within just days of its disclosure.
Collection
[
|
...
]