Serial number: AV25-338
Date: June 11, 2025
On June 11, 2025, Palo Alto Networks published security advisories to address vulnerabilities in multiple products. Included were updates for the following:
- GlobalProtect App 6.3 macOS – versions prior to 6.3.3
- GlobalProtect App 6.2 macOS – versions prior to 6.2.8-h2
- GlobalProtect App 6.1 macOS – all versions
- GlobalProtect App 6.0 macOS – all versions
- PAN-OS 11.2 – versions prior to 11.2.6
- PAN-OS 11.1 – versions prior to 11.1.10
- PAN-OS 11.0 – versions prior to 11.0.3
- PAN-OS 10.2 – versions prior to 10.2.14
- PAN-OS 10.1 – all versions
- Prisma Access Browser – versions prior to 136.24.1.93
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
- Palo Alto Networks Security Advisories - CVE-2025-4232 GlobalProtect: Authenticated Code Injection Through Wildcard on macOS
- Palo Alto Networks Security Advisories - CVE-2025-4231 PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface
- Palo Alto Networks Security Advisories - CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI
- Palo Alto Networks Security Advisories - PAN-SA-2025-0011
- Palo Alto Network Security Advisories