CVE-2025-0137 | Palo Alto Cloud NGFW/PAN-OS up to 6.3.2 Management Web Interface cross site scripting

A vulnerability, which was classified as problematic, was found in Palo Alto Cloud NGFW and PAN-OS up to 6.3.2. Affected is an unknown function of the component Management Web Interface. The manipulation leads to improper neutralization of script in attributes in a web page.

This vulnerability is traded as CVE-2025-0137. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More