CVE-2025-0103

Published Jan 11, 2025

Last updated 25 days ago

CVSS critical 9.2

Overview

Description
An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, and device API keys. This vulnerability also enables attackers to create and read arbitrary files on the Expedition system.
Source
psirt@paloaltonetworks.com
NVD status
Received
CNA Tags
unsupported-when-assigned

Risk scores

CVSS 4.0

Type
Secondary
Base score
9.2
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:H/U:Amber
Severity
CRITICAL

Weaknesses

psirt@paloaltonetworks.com
CWE-89

Social media

Hype score
Not currently trending

  1. New post from https://t.co/uXvPWJy6tj (CVE-2025-0103 | Palo Alto Networks Cloud NGFW sql injection) has been published on https://t.co/WDvlWKAlPi

    @WolfgangSesin

    11 Jan 2025

    24 Impressions

    1 Retweet

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. CVE-2025-0103 SQL Injection in Palo Alto Networks Expedition Exposes Sensitive Data A SQL injection vulnerability exists in Palo Alto Networks Expedition. An authenticated attacker can access Expedition database ... https://t.co/yPGLoTnGpE

    @VulmonFeeds

    11 Jan 2025

    34 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-0103 An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usern… https://t.co/iFno1kwfyV

    @CVEnew

    11 Jan 2025

    341 Impressions

    0 Retweets

    0 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  4. [CVE-2025-0103: CRITICAL] SQL injection vulnerability in Palo Alto Networks Expedition allows authenticated attackers to access database contents & create/read files on the system. #cybersecurity#cybersecurity,#vulnerability https://t.co/jNxNr4CmR4 https://t.co/He6XQp2hzR

    @CveFindCom

    11 Jan 2025

    36 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Multiple vulnerabilities in Palo Alto Networks’ Expedition migration tool have been discovered, potentially exposing sensitive firewall credentials, including usernames, cleartext passwords, device configurations, and API keys. CVE-2025-0103 (CVSS 7.8): An SQL injection… https:/

    @CyberDefenseSol

    9 Jan 2025

    29 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. パロアルトネットワークス社の保守期限切れ移行ツールExpeditionに7件の脆弱性。CVE-2025-0103はCVSSスコア7.8のSQLインジェクション。公式は保守期限切れのため製品移行を推奨しているが、継続使用する場合は更新適用により修正される。悪用の報告はない。 https://t.co/cCh8eyyFBf

    @__kokumoto

    9 Jan 2025

    861 Impressions

    2 Retweets

    10 Likes

    1 Bookmark

    0 Replies

    0 Quotes

References