Cybersecurity and US Infrastructure Agency (CISA) added Two disadvantages of security affectShip) A catalog based on evidence of active operation.
Disadvantages are below –
- Cve-2025-0108 (CVSS Assessment: 7.8) -Vulnerability of Authentification Passage Palo Alto Web Interface Pan -OS, which allows unauthorized attackers with network access to the management interface to get around authentication, usually required and causes certain scenarios
- Cve-2024-53704 (CVSS Assessment: 8.2) – Incorrect Authentication Vulnerability in SSLVPN authentication mechanism, which allows a remote attacker to bypass authentication
Palo Alto Networks has since confirmed Hacker News that she noticed active attempts to operate against CVE-2025-0108, and the company notes that it can be confined to other vulnerabilities such as CVE-20474 to allow unauthorized access to unauthorized access And a false firewall.
“Palo Alto Networks observed attempts to operate Cve-2025-0108 Cve-2024-9474 and Cve-2025-0111 On the unprotected and unsecured Internet management interfaces, “this – Note in updated consultation.
Threat of intelligence firm Greynoise – Note As many as 25 malicious IP addresses are actively exploited by the CVE-2025-0108, and the volume of the attacker’s activity increases 10 times as it was detected almost a week ago. The top three sources of the attack are the US, Germany and the Netherlands.
As for the CVE-2024-53704, the Cybersecurity Company of Arctic Wolf has shown that the threat subjects were armed shortcomings shortly after Bishop Fox was provided with evidence of the concept (POC).
In light of the active operation of the Federal Civil Executive Agency (FCEB), the revealed vulnerabilities by March 11, 2025, to ensure their networks.
