CVE-2025-0106

Description

A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem.

CVSS breakdown

Affected products

• Palo Alto Networks / Cloud NGFWAll – All
• Palo Alto Networks / Expedition1 – 1.2.101
• Palo Alto Networks / PanoramaAll – All
• Palo Alto Networks / pan-osAll – All
• Palo Alto Networks / Prisma AccessAll – All

References

• MISChttps://security.paloaltonetworks.com/PAN-SA-2025-0001