CVE-2025-0107

Name of the Vulnerable Software and Affected Versions Palo Alto Networks Expedition versions 1.2.101 and earlier

Description An OS command injection issue exists in Palo Alto Networks Expedition. This allows an unauthenticated attacker to execute arbitrary OS commands as the www-data user. Successful exploitation can lead to the disclosure of sensitive information, including usernames, cleartext passwords, device configurations, and device API keys for firewalls running PAN-OS software. The vulnerability is related to the failure to neutralize special elements used in the underlying operating system. An attacker can trigger a call to an Apache Spark server, potentially leading to arbitrary code execution.

Recommendations Versions prior to 1.2.101 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.