Palo Alto PAN-OS Multiple vulnerabilities

Release Date: 11 Jul 2025

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

Multiple vulnerabilities were identified in Palo Alto PAN-OS . A remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure, denial of service condition, elevation of privilege and security restriction bypass on the targeted system.

 

Note:

CVE-2024-1086 is being exploited in the wild. It is related to use-after-free vulnerability in the netfilter: nf_tables component. Local attackers could exploit this flaw to elevate privileges from a regular user to root. The risk level remain medium risk.

---

Impact

• Denial of Service
• Information Disclosure
• Security Restriction Bypass
• Elevation of Privilege

---

System / Technologies affected

• PAN-OS 10.2 versions earlier than PAN-OS 10.2.14
• PAN-OS 11.1 versions earlier than PAN-OS 11.1.8
• PAN-OS 11.2 versions earlier than PAN-OS 11.2.5

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://securityadvisories.paloaltonetworks.com/PAN-SA-2025-0012

---

Vulnerability Identifier

• CVE-2019-5827
• CVE-2019-13750
• CVE-2019-13751
• CVE-2019-19603
• CVE-2020-9283
• CVE-2020-13434
• CVE-2020-13435
• CVE-2020-14040
• CVE-2020-15358
• CVE-2020-29652
• CVE-2021-20305
• CVE-2021-27918
• CVE-2022-1962
• CVE-2022-28131
• CVE-2022-30633
• CVE-2023-3978
• CVE-2023-27536
• CVE-2023-28321
• CVE-2023-28322
• CVE-2023-38546
• CVE-2023-43804
• CVE-2023-46218
• CVE-2024-1086
• CVE-2024-34155

---

Source

• Palo Alto

---

Related Link

• https://securityadvisories.paloaltonetworks.com/PAN-SA-2025-0012