Loading
Generated remediation guidance and an executive summary. No account required.
An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker with network access to the management web interface to read files on the PAN-OS filesystem that are readable by the “nobody” user. You can greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended best practices deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue does not affect Cloud NGFW or Prisma Access software.
Use CWE-73, Paloaltonetworks vendor hub and Pan-Os product page to widen CVE-2025-0111 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2024-0012, CVE-2025-0108 and CVE-2024-3393 for nearby disclosures in the same product family.