CVE-2025-0122

Summary

A denial-of-service (DoS) vulnerability in Palo Alto Networks Prisma® SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to disrupt the packet processing capabilities of the device by sending a burst of crafted packets to that device.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksPrisma SD-WAN6.5.0 < 6.5.1affected
Palo Alto NetworksPrisma SD-WAN6.4.0 < 6.4.2affected
Palo Alto NetworksPrisma SD-WAN6.3.0 < 6.3.4affected
Palo Alto NetworksPrisma SD-WAN6.2.0affected
Palo Alto NetworksPrisma SD-WAN6.1.0 < 6.1.10affected

Weaknesses

  • CWE-770: CWE-770 Allocation of Resources Without Limits or Throttling

Workarounds

There are no known workarounds for this issue.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References