CVE-2025-4615

HIGH

Palo Alto Networks PAN-OS - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-4615. PoCs published by sh00bx.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2025-4615, a newline injection vulnerability in PAN-OS. It includes root cause analysis, proof-of-concept steps, and an assessment of the incomplete vendor fix.

Description

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators. Cloud NGFW and Prisma® Access are not affected by this vulnerability.

Exploits (1)

nomisec WRITEUP

by sh00bx · poc

https://github.com/sh00bx/cve-2025-4615

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2025-4615, a newline injection vulnerability in PAN-OS. It includes root cause analysis, proof-of-concept steps, and an assessment of the incomplete vendor fix.

Classification

Writeup 100%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: PAN-OS

Auth required

Prerequisites: Authenticated admin access to PAN-OS management · Configured secure-proxy-server

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Apr 09, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://security.paloaltonetworks.com/CVEN-2025-4615

Scores

CVSS v3 7.2

EPSS 0.0072

EPSS Percentile 49.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-83

Status published

Products (7)

Palo Alto Networks/Cloud NGFW All

Palo Alto Networks/PAN-OS 10.2.0 - 10.2.17

Palo Alto Networks/PAN-OS 11.1.0 - 11.1.4-h27

Palo Alto Networks/PAN-OS 11.2.0 - 11.2.8

Palo Alto Networks/PAN-OS 12.1.0

Palo Alto Networks/Prisma Access All

paloaltonetworks/pan-os 10.2.0 - 10.2.17

Published Oct 09, 2025

Tracked Since Feb 18, 2026