CVE-2025-4619
中文标题:
(暂无数据)
英文标题:
PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Packets
漏洞描述
中文描述:
(暂无数据)
英文描述:
A denial-of-service (DoS) vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to reboot a firewall by sending a specially crafted packet through the dataplane. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. This issue is applicable to the PAN-OS software versions listed below on PA-Series firewalls, VM-Series firewalls, and Prisma® Access software. This issue does not affect Cloud NGFW. We have successfully completed the Prisma Access upgrade for all customers, with the exception of those facing issues such as conflicting maintenance windows. Remaining customers will be promptly scheduled for an upgrade through our standard upgrade process.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| Palo Alto Networks | Cloud NGFW | - | - | - |
cpe:2.3:a:palo_alto_networks:cloud_ngfw:*:*:*:*:*:*:*:*
|
| Palo Alto Networks | PAN-OS | 11.2.4 | < 11.2.5 | - |
cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h3:*:*:*:*:*:*
|
| Palo Alto Networks | Prisma Access | - | < 10.2.10-h14 | - |
cpe:2.3:a:palo_alto_networks:prisma_access:*:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
CVSS评分详情
4.0 (cna)
MEDIUMCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/AU:Y/R:U/V:C/RE:M/U:Amber
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2025-4619 |
2025-11-15 03:17:45 | 2026-01-12 02:11:51 |
| NVD | nvd_CVE-2025-4619 |
2025-11-15 03:18:45 | 2026-01-12 02:27:49 |
版本与语言
安全公告
变更历史
查看详细变更
- affected_products_count: 5 -> 3
- data_sources: ['cve'] -> ['cve', 'nvd']