ГлавнаяУязвимости → CVE-2025-4615
7.2высокая

CVE-2025-4615

→ есть в БДУ: BDU:2026-04962 (на русском)
Описание (на английском; русское — в БДУ выше)

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators. Cloud NGFW and Prisma® Access are not affected by this vulnerability.

Затрагиваемое ПО
Paloaltonetworks Pan-os
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://security.paloaltonetworks.com/CVEN-2025-4615