Zultys Security Advisory Notice - SAN25-006 Rev 1.0

Vulnerability in Palo Alto PAN-OS (CVE-2025-4615)

Severity: Medium

Published: 2025-10-14

Updated: 2025-10-14

Revision: 1.0

Evaluated Products

Zultys Cloud Services

Impacted Products

Zultys Cloud Services

Affected Releases

Not applicable

Impacted 3rd Party Products

Not applicable

Introduction

On October 9, 2025 details of an improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS software was published in the National Vulnerability Database under CVE-2025-4615.

The vulnerability enables an authenticated administrator to bypass system restrictions and execute arbitrary commands.

Description

Zultys has in place best practice network access restrictions which restrict the required CLI access to a limited group of internal administrators.

Impacted Palo Alto network products within the Zultys Cloud Services infrastructure will be upgraded in a staged approach to ensure no negative impact on services.

Customers utilizing a Palo Alto firewall to protect deployed MX systems should review the information available from Palo Alto Networks and ensure the firewall is appropriately updated and/or configured to protect against CVE-2025-4615.

Contact

If additional information is required contact support@zultys.com or your Authorized Zultys Channel Partner.

Back to Security Advisories >

SAN25-006

Zultys Security Advisory Notice - SAN25-006 Rev 1.0

Vulnerability in Palo Alto PAN-OS (CVE-2025-4615)

Evaluated Products

Impacted Products

Affected Releases

Impacted 3rd Party Products

Introduction

Get started with smarter communications today.

Products

Platforms

Resources

Company