PT-2025-33020 · Palo Alto Networks · Palo Alto Networks Checkov+1
Published
2025-03-10
·
Updated
2025-08-13
·
CVE-2025-2180
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Palo Alto Networks Checkov by Prisma® Cloud versions prior to 3.2.415
Description:
An unsafe deserialization issue in Palo Alto Networks Checkov by Prisma® Cloud allows an authenticated user to execute arbitrary code as a non-administrative user by scanning a malicious terraform file when using Checkov in Prisma® Cloud.
Recommendations:
Update to Checkov version 3.2.415 or later.
Fix
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Palo Alto Networks Checkov
Prisma Cloud