[Palo Alto Networks Security Advisories] PAN-SA-2025-0011 Chromium and Prisma Access Browser: Monthly VulnerabilityUpdate (June 2025)

June 11, 2025

Palo Alto Networks Security Advisories /PAN-SA-2025-0011

PAN-SA-2025-0011 Chromium and Prisma Access Browser: Monthly Vulnerability Update (June 2025)

UrgencyMODERATE

047910
Severity8.6 ·HIGH
Exploit MaturityATTACKED
Response EffortMODERATE
RecoveryUSER
Value DensityDIFFUSE
Attack VectorNETWORK
Attack ComplexityLOW
Attack RequirementsNONE
AutomatableNO
User InteractionACTIVE
Product ConfidentialityHIGH
Product IntegrityHIGH
Product AvailabilityHIGH
Privileges RequiredNONE
Subsequent ConfidentialityNONE
Subsequent IntegrityNONE
Subsequent AvailabilityNONE
JSONCSAF
Published2025-06-11
Updated2025-06-11
Discoveredexternally

Description

Palo Alto Networks incorporated the following Chromium security fixes into our products:

Additionally, a vulnerability in Prisma Access Browser was also addressed.

    CVESummary
    CVE-2025-4664Insufficient policy enforcement in Loader
    CVE-2025-5063Use after free in Compositing
    CVE-2025-5064Inappropriate implementation in Background Fetch API
    CVE-2025-5065Inappropriate implementation in FileSystemAccess API
    CVE-2025-5066Inappropriate implementation in Messages
    CVE-2025-5067Inappropriate implementation in Tab Strip
    CVE-2025-5068Use after free in Blink
    CVE-2025-5280Out of bounds write in V8
    CVE-2025-5281Inappropriate implementation in BFCache
    CVE-2025-5283Use after free in libvpx
    CVE-2025-5419Out of bounds read and write in V8
    CVE-2025-4233Prisma Access Browser: Inappropriate implementation in Cache

    Product Status

    VersionsAffectedUnaffected
    Prisma Access Browser< 136.24.1.93
    		>= 137.16.2.69

    Required Configuration for Exposure

    No special configuration is required to be affected by this issue.

    Severity:HIGH, Suggested Urgency:MODERATE

    CVSS-BT:8.6 /CVSS-B:8.6 (CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/AU:N/R:U/V:D/RE:M/U:Amber)

    Exploitation Status

    Palo Alto Networks is not aware of any malicious exploitation of this issue.

    Solution

    CVEPrisma Access Browser
    CVE-2025-4664
    		136.24.2.114
    CVE-2025-5063
    		137.16.2.69
    CVE-2025-5064
    		137.16.2.69
    CVE-2025-5065
    		137.16.2.69
    CVE-2025-5066
    		137.16.2.69
    CVE-2025-5067
    		137.16.2.69
    CVE-2025-5068
    		137.16.2.69
    CVE-2025-5280
    		137.16.2.69
    CVE-2025-5281
    		137.16.2.69
    CVE-2025-5283
    		137.16.2.69
    CVE-2025-5419
    		137.16.2.69
    CVE-2025-4233136.24.1.93 

    Workarounds and Mitigations

    No workaround or mitigation is available.

    Acknowledgments

    Palo Alto Networks thanks Tan Inn Fung, Yu Ann Ong, Zhang Bosen from the GovTech Cybersecurity Group for discovering and reporting CVE-2025-4233.

    Timeline

    Initial publication

    A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

    If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

    Buy Me A Coffee
    Patreon

    To keep up to date follow us on the below channels.

    Tags: , ,

    You may have missed

    image

    CVE Alert: CVE-2025-4417

    June 13, 2025
    image

    CVE Alert: CVE-2025-36539

    June 13, 2025
    image

    CVE Alert: CVE-2025-44019

    June 13, 2025
    image

    CVE Alert: CVE-2025-6031

    June 13, 2025
    image

    CVE Alert: CVE-2025-2745

    June 13, 2025