Warning: Critical Flaw in Palo Alto Networks Firewalls
A high-severity vulnerability in Palo Alto Networks firewalls could allow unauthenticated attackers to disable firewall protections in denial-of-service (DoS) attacks.
Affected Devices
- Next-generation firewalls (running PAN-OS 10.1 or later)
- Palo Alto Networks' Prisma Access configurations when the GlobalProtect gateway or portal is enabled
Hackers could exploit this vulnerability to track and eavesdrop on users via Bluetooth audio devices.
Risk to Users
Repeated attempts to trigger this issue could result in the firewall entering into maintenance mode, leaving users vulnerable to attacks.
Palo Alto Networks has released security updates for all affected versions, and admins are advised to upgrade to the latest release to secure their systems against potential attacks.
Previous Vulnerabilities
- CVE-2024-3393: a PAN-OS DoS vulnerability that was exploited by hackers to target PA-Series, VM-Series, and CN-Series firewalls
- CVE-2025-0111, CVE-2025-0108, and CVE-2024-9474: flaws that were chained in attacks to compromise PAN-OS firewalls
It is essential for users to be aware of these vulnerabilities and take necessary steps to secure their systems.