CNNVD-202510-1268 Information

CNNVD ID

CNNVD-202510-1268

Related CVE

CVE-2025-4614

• CNNVD Published: 2025-10-09

Description (Chinese)

Palo Alto Networks PAN-OS是美国Palo Alto Networks公司的一套为其防火墙设备开发的操作系统。 Palo Alto Networks PAN-OS存在安全漏洞，该漏洞源于允许经过身份验证的管理员查看防火墙Web UI中用户的会话令牌，可能导致用户冒充。

Description (English)

Palo Alto Networks PAN-OS is an operating system developed by the United States company Palo Alto Networks for its firewall equipment. Palo Alto Networks PAN-OS has a security loophole, which stems from the use of a message sign that allows an accredited administrator to view a user in the firewall Web UI, which may lead to an impersonation.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

派拓网络

Published

2025-10-09

Last Modified

2026-02-24

References

https://security.paloaltonetworks.com/CVE-2025-4614 https://vigilance.fr/vulnerability/PAN-OS-information-disclosure-via-Session-Token-48422

Patch

https://security.paloaltonetworks.com/CVE-2025-4614