PT-2025-11113 · Palo Alto Networks · Pan-Os

Published

2025-03-12

Updated

2025-03-14

CVE-2025-0114

CVSS v4.0

8.2

High

Vector

AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/AU:N/R:U/V:C/U:Amber

Name of the Vulnerable Software and Affected Versions: Palo Alto Networks PAN-OS (affected versions not specified)

Description: A Denial of Service (DoS) issue in the GlobalProtect feature of the software allows an unauthenticated attacker to make the service unavailable by sending a large number of specially crafted packets over time. This affects both the GlobalProtect portal and the GlobalProtect gateway. It does not apply to Cloud NGFWs or Prisma Access software.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

BDU:2025-04302

CVE-2025-0114

Affected Products

Pan-Os

PT-2025-11113 · Palo Alto Networks · Pan-Os

CVE-2025-0114

Weakness Enumeration

Related Identifiers

Affected Products

References · 14