AI description
CVE-2025-0128 is a denial-of-service (DoS) vulnerability found in the Simple Certificate Enrollment Protocol (SCEP) authentication feature of Palo Alto Networks PAN-OS software. This vulnerability allows an unauthenticated attacker to trigger system reboots by sending a maliciously crafted packet to the firewall. Repeated attempts to exploit this vulnerability can force the firewall into maintenance mode, potentially causing significant network downtime. Cloud NGFW is not affected by this vulnerability, and Prisma Access software has been proactively patched to prevent exploitation.
- Description
- A denial-of-service (DoS) vulnerability in the Simple Certificate Enrollment Protocol (SCEP) authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. Cloud NGFW is not affected by this vulnerability. Prisma® Access software is proactively patched and protected from this issue.
- Source
- psirt@paloaltonetworks.com
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 8.7
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:C/RE:M/U:Amber
- Severity
- HIGH
- psirt@paloaltonetworks.com
- CWE-754
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
🚨 CVE-2025-0128 🔴 HIGH (8.7) 🏢 Palo Alto Networks - Cloud NGFW 🏗️ All 🔗 https://t.co/FWBbr33S3M #CyberCron #VulnAlert #InfoSec https://t.co/1Y5dkhX9nn
@cybercronai
12 Apr 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 A new CVE-2025-0128 flaw in Palo Alto's PAN-OS enables remote system reboots via crafted packets—no auth required. Affects multiple versions. Patching is urgent. #CyberSecurity #InfoSec #PANOS #CVE20250128 https://t.co/1s6n9TTEXo
@threatsbank
11 Apr 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0128 A denial-of-service (DoS) vulnerability in the Simple Certificate Enrollment Protocol (SCEP) authentication feature of Palo Alto Networks PAN-OS® software enables an un… https://t.co/Q6OSLmsosm
@CVEnew
11 Apr 2025
252 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0128 Unauthenticated Denial-of-Service Vulnerability in Palo Alto Networks PAN-OS SCEP Authentication https://t.co/WthF13q2JQ
@VulmonFeeds
11 Apr 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-0128: HIGH] Critical DoS vulnerability found in Palo Alto Networks PAN-OS® software's SCEP authentication feature. Unauthenticated attackers can trigger system reboots with a crafted packet. Cloud NGFW u...#cybersecurity,#vulnerability https://t.co/vG0MJ3PjEb https://t.
@CveFindCom
11 Apr 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0128 is a newly discovered medium-severity DoS vulnerability in #PaloAlto Networks’ PAN-OS that allows attackers to reboot firewalls by sending a single malicious packet via the SCEP authentication feature. https://t.co/NBDm0jZUZ2 https://t.co/ji1q8Uy3dV
@provintell
10 Apr 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Palo Alto NetworksのPAN-OSファイアウォールに深刻なDoS脆弱性(CVE-2025-0128)が発見された。 これは認証不要で悪意あるパケットを送信することで、遠隔から機器の再起動を引き起こし、繰り返し攻撃により保守モードへ移行させる可能性がある。
@yousukezan
10 Apr 2025
4065 Impressions
13 Retweets
50 Likes
14 Bookmarks
0 Replies
1 Quote
PAN-OS Firewall DoS Vulnerability Let Attacker Reboot Firewall Repeatedly Flaw Details: https://t.co/xiyEybKklZ A denial-of-service vulnerability (CVE-2025-0128) is affecting multiple versions of their PAN-OS firewall software. The flaw allows unauthenticated attackers to htt
@The_Cyber_News
10 Apr 2025
431 Impressions
1 Retweet
6 Likes
0 Bookmarks
0 Replies
0 Quotes