CVE-2025-0138

Prisma Cloud Compute Edition: Insufficient Session Expiration Vulnerability in the Web Interface

CVSS 2 LOWEPSS 0.3%CWE-613

Vexday Risk Score

8Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 2EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado

Lifecycle

14 May 2025Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access. Compute in Prisma Cloud Enterprise Edition is not affected by this issue.

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber

Affected products

Palo Alto Networks · Compute in Prisma Cloud Enterprise Edition Palo Alto Networks · Prisma Cloud Compute Edition

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://security.paloaltonetworks.com/CVE-2025-0138