CVE-2025-0116

MEDIUM

Palo Alto Networks PAN-OS - DoS

Title source: llm

Description

A Denial of Service (DoS) vulnerability in Palo Alto Networks PAN-OS software causes the firewall to unexpectedly reboot when processing a specially crafted LLDP frame sent by an unauthenticated adjacent attacker. Repeated attempts to initiate this condition causes the firewall to enter maintenance mode. This issue does not apply to Cloud NGFWs or Prisma Access software.

References (1)

[Various Sources] https://security.paloaltonetworks.com/CVE-2025-0116

Scores

CVSS v4 6.8

EPSS 0.0008

EPSS Percentile 22.3%

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/AU:N/R:U/V:C/RE:M/U:Amber

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-754

Status published

Products (6)

Palo Alto Networks/Cloud NGFW All

Palo Alto Networks/PAN-OS 10.1.0 - 10.1.14-h11

Palo Alto Networks/PAN-OS 10.2.0 - 10.2.14

Palo Alto Networks/PAN-OS 11.1.0 - 11.1.8

Palo Alto Networks/PAN-OS 11.2.0 - 11.2.5

Palo Alto Networks/Prisma Access All

Published Mar 12, 2025

Tracked Since Feb 18, 2026