[Palo Alto Networks Security Advisories] CVE-2025-0138 Prisma Cloud Compute Edition: Insufficient Session ExpirationVulnerability in the Web Interface

May 14, 2025

Palo Alto Networks Security Advisories /CVE-2025-0138

CVE-2025-0138 Prisma Cloud Compute Edition: Insufficient Session Expiration Vulnerability in the Web Interface

UrgencyMODERATE

047910
Severity0.3 ·LOW
Exploit MaturityUNREPORTED
Response EffortMODERATE
RecoveryUSER
Value DensityDIFFUSE
Attack VectorNETWORK
Attack ComplexityLOW
Attack RequirementsPRESENT
AutomatableNO
User InteractionACTIVE
Product ConfidentialityNONE
Product IntegrityLOW
Product AvailabilityNONE
Privileges RequiredLOW
Subsequent ConfidentialityNONE
Subsequent IntegrityNONE
Subsequent AvailabilityNONE
CVEJSONCSAF
Published2025-05-14
Updated2025-05-14
ReferenceCWP-62541
Discoveredexternally

Description

Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.

Compute in Prisma Cloud Enterprise Edition is not affected by this issue.

Product Status

VersionsAffectedUnaffected
Compute in Prisma Cloud Enterprise EditionNoneAll
Prisma Cloud Compute Edition < 34.00.141>= 34.00.141

Required Configuration for Exposure

No special configuration is required to be affected by this issue.

Severity:LOW, Suggested Urgency:MODERATE

CVSS-BT:0.3 /CVSS-B:2.0 (CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber)

Exploitation Status

Palo Alto Networks is not aware of any malicious exploitation of this issue.

Weakness Type and Impact

CWE-613 Insufficient Session Expiration

CAPEC-114 Authentication Abuse

Solution

This issue is fixed in Prisma Cloud Compute Edition 34.00.141, and all later Prisma Cloud Compute Edition versions.

Workarounds and Mitigations

No workaround or mitigation is available.

Acknowledgments

Palo Alto Networks thanks Maciej Pypec of ING for discovering and reporting the issue.

CPEs

cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:34.00.137:*:*:*:*:*:*:*

cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.03.138:*:*:*:*:*:*:*

cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.02.134:*:*:*:*:*:*:*

cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.01.137:*:*:*:*:*:*:*

cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.07.123:*:*:*:*:*:*:*

cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.06.113:*:*:*:*:*:*:*

cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.05.124:*:*:*:*:*:*:*

cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.04.113:*:*:*:*:*:*:*

Timeline

Initial Publication

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

To keep up to date follow us on the below channels.

Tags: , ,

You may have missed

image

[AKIRA] – Ransomware Victim: Av Alumitran

May 14, 2025
Palo_Alto_Networks_Logo

[Palo Alto Networks Security Advisories] PAN-SA-2025-0010 Informational Bulletin: No Impact of the Marvin Attack onPAN-OS

May 14, 2025
Palo_Alto_Networks_Logo

[Palo Alto Networks Security Advisories] CVE-2025-0133 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability inGlobalProtect Gateway and Portal

May 14, 2025
Palo_Alto_Networks_Logo

[Palo Alto Networks Security Advisories] CVE-2025-0138 Prisma Cloud Compute Edition: Insufficient Session ExpirationVulnerability in the Web Interface

May 14, 2025
Palo_Alto_Networks_Logo

[Palo Alto Networks Security Advisories] CVE-2025-0136 PAN-OS: Unencrypted Data Transfer when using AES-128-CCM onIntel-based hardware devices

May 14, 2025