CVE-2025-0103

HIGH

Palo Alto Networks Expedition - SQL Injection

Title source: llm

Description

An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, and device API keys. This vulnerability also enables attackers to create and read arbitrary files on the Expedition system.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://security.paloaltonetworks.com/PAN-SA-2025-0001

Scores

CVSS v3 8.8

EPSS 0.0046

EPSS Percentile 64.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-89

Status published

Products (1)

paloaltonetworks/expedition < 1.2.101

Published Jan 11, 2025

Tracked Since Feb 18, 2026