Summary
Palo Alto Networks has released security updates to address multiple vulnerabilities, including one with a severity of “high” in the Expedition product. This vulnerability, if exploited, could allow an attacker to arbitrarily create, delete, and access files on target systems.
Risk
Vulnerability Community Impact Estimate: Medium (62.94)
Type
- Arbitrary File Read/Write/Delete
Affected Products and/or Versions
- Expedition 1, versions prior to 1.2.101
Mitigation Actions
In line with the vendor’s statements, it is recommended to apply the available mitigations following the guidance provided in the security bulletin in the References section.
The following are only the CVEs related to the “high” severity vulnerabilities:
References
https://security.paloaltonetworks.com/PAN-SA-2025-0001
1This estimate is made taking into account several parameters, including: CVSS, availability of patches/workarounds and PoC, diffusion of the affected software/devices in the reference community.
