RCE in Palo Alto Networks Cloud Ngfw

CVE-2025-4230

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have a…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.006 (45.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References