Vulnerability in Palo Alto Networks User-id Credential Agent

CVE-2025-4235

An information exposure vulnerability in the Palo Alto Networks User-ID Credential Agent (Windows-based) can expose the service account password under specific non-default configurations. This allows an unprivileged Domain User to escalate…

EPSS: 0.002 (7.4th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

Public proof-of-concept exploits

References

Frequently asked questions

What is CVE-2025-4235?
CVE-2025-4235 is a vulnerability in Palo Alto Networks User-id Credential Agent, classified under Exposure of Sensitive System Information to an Unauthorized Control Sphere. Published 2025-09-12.
Is CVE-2025-4235 known to be exploited?
1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.