CVE-2025-0116
MEDIUMPAN-OS 10.1.0-10.1.14-h11, 10.2.0-10.2.14, 11.1.0-11.1.8, 11.2.0-11.2.5 - DoS via Crafted LLDP Frame
Title source: llmDescription
A Denial of Service (DoS) vulnerability in Palo Alto Networks PAN-OS software causes the firewall to unexpectedly reboot when processing a specially crafted LLDP frame sent by an unauthenticated adjacent attacker. Repeated attempts to initiate this condition causes the firewall to enter maintenance mode. This issue does not apply to Cloud NGFWs or Prisma Access software.
References (1)
Core 1
Core References
Various Sources vendor-advisory
https://security.paloaltonetworks.com/CVE-2025-0116
Scores
CVSS v4
6.8
EPSS
0.0022
EPSS Percentile
12.5%
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/AU:N/R:U/V:C/RE:M/U:Amber
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-754
Status
published
Products (6)
Palo Alto Networks/Cloud NGFW
All
Palo Alto Networks/PAN-OS
10.1.0 - 10.1.14-h11
Palo Alto Networks/PAN-OS
10.2.0 - 10.2.14
Palo Alto Networks/PAN-OS
11.1.0 - 11.1.8
Palo Alto Networks/PAN-OS
11.2.0 - 11.2.5
Palo Alto Networks/Prisma Access
All
Published
Mar 12, 2025
Tracked Since
Feb 18, 2026