RCE in Palo Alto Networks Cloud Ngfw

CVE-2025-0127

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. Thi…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.006 (42.2th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References