Vulnerability in Palo Alto Networks User-id Credential Agent
CVE-2025-4235
An information exposure vulnerability in the Palo Alto Networks User-ID Credential Agent (Windows-based) can expose the service account password under specific non-default configurations. This allows an unprivileged Domain User to escalate…
EPSS: 0.002 (7.4th percentile) — read the EPSS interpretation.
Affected products
- Palo Alto Networks User-id Credential Agent — versions 11.0.0
Weakness classification (CWE)
Public proof-of-concept exploits
References
- psirt@paloaltonetworks.com (vendor-advisory)
Frequently asked questions
- What is CVE-2025-4235?
- CVE-2025-4235 is a vulnerability in Palo Alto Networks User-id Credential Agent, classified under Exposure of Sensitive System Information to an Unauthorized Control Sphere. Published 2025-09-12.
- Is CVE-2025-4235 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.