POC详情: 719b00062359a01ba5fbf8daf0b377a8d3d3e79a

来源
https://github.com/FOLKS-iwd/CVE-2025-0108-PoC
关联漏洞
标题: Palo Alto Networks PAN-OS 安全漏洞 (CVE-2025-0108)
描述:Palo Alto Networks PAN-OS是美国Palo Alto Networks公司的一套为其防火墙设备开发的操作系统。 Palo Alto Networks PAN-OS存在安全漏洞,该漏洞源于存在认证绕过漏洞,会影响PAN-OS完整性和保密性。
描述
This repository contains a Proof of Concept (PoC) for the **CVE-2025-0108** vulnerability, which is an **authentication bypass** issue in Palo Alto Networks' PAN-OS software. The scripts provided here test for the vulnerability by sending a crafted HTTP request to the target systems.
介绍
# CVE-2025-0108 Proof of Concept (PoC)

This repository contains a Proof of Concept (PoC) for the **CVE-2025-0108** vulnerability, which is an **authentication bypass** issue in Palo Alto Networks' PAN-OS software. The scripts provided here test for the vulnerability by sending a crafted HTTP request to the target systems.

![image](https://github.com/user-attachments/assets/3f3f6868-7f71-428e-9a12-3c53a1ed437f)

# CVE-2025-0108 Detection Template 🔍

**Nuclei template for Palo Alto PAN-OS Authentication Bypass (CVE-2025-0108)**

## 📜 Overview
A detection template for an authentication bypass vulnerability in Palo Alto PAN-OS management interface that allows unauthorized access via crafted path traversal requests.

**CVSS 4.0**: 8.8 (Base) / 7.8 (Threat)  
**Severity**: High  

## 🛠️ Nuclei Usage
```bash
nuclei -t CVE-2025-0108.yaml -u <target-url>
文件快照

 [4.0K]  /data/pocs/719b00062359a01ba5fbf8daf0b377a8d3d3e79a
├── [ 886]  CVE-2025-0108.yaml
├── [1.0K]  LICENSE
└── [ 872]  README.md

0 directories, 3 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。