As part of its Third-Party Vulnerability Disclosure (3PVD) program, Google published a proof-of-concept (PoC) exploit for a high-severity command injection vulnerability in Palo Alto Networks’ PAN-OS OpenConfig plugin. Tracked as CVE-2025-0110, the flaw allows authenticated administrators to execute arbitrary commands on firewalls via manipulated gNMI requests, escalating privileges to root access. The disclosure follows Palo … Continue reading Google Released PoC Exploit For Palo Alto Firewall Command Injection Vulnerability