Ethical Hacking News
CISA has added two critical vulnerabilities, CVE-2025-23209 affecting Craft CMS and CVE-2025-0111 in Palo Alto Networks PAN-OS, to its Known Exploited Vulnerabilities catalog. These flaws highlight the ever-present threat landscape in cybersecurity and underscore the importance of prompt action when it comes to addressing vulnerabilities like these.
CISA has added two critical vulnerabilities, CVE-2025-23209 and CVE-2025-0111, to its Known Exploited Vulnerabilities catalog. CVE-2025-23209 affects Craft CMS versions 4 and 5 with a code injection vulnerability that can lead to remote code execution. CVE-2025-0111 is a file read issue in PAN-OS allowing authenticated attackers to gain unauthorized access to files readable by the "nobody" user. Palo Alto Networks has released a fix for CVE-2025-0111, but attack actors are already exploiting it with other vulnerabilities like CVE-2025-0108 and CVE-2024-9474.
The recent update by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has shed light on two critical vulnerabilities affecting Craft CMS and Palo Alto Networks PAN-OS, respectively. The addition of these flaws to CISA's Known Exploited Vulnerabilities catalog serves as a stark reminder of the ever-present threat landscape in the world of cybersecurity.
The first vulnerability, CVE-2025-23209, affects Craft CMS versions 4 and 5, which have been compromised by a code injection vulnerability. This flaw, tracked as CVSS score 8.1, can lead to remote code execution (RCE), leaving the integrity of these systems vulnerable to exploitation. The advisory from CISA warns that if an unpatched version of Craft CMS is used with a compromised security key, anyone running such an install is at risk.
Pierluigi Paganini, in his article for Security Affairs, emphasizes the gravity of this situation and provides valuable insights into the vulnerability's impact. He notes, "If you can't update to a patched version, then rotating your security key and ensuring its privacy will help to mitigate the issue." This underscores the importance of prompt action when it comes to addressing vulnerabilities like CVE-2025-23209.
In stark contrast, the second vulnerability added to CISA's catalog, CVE-2025-0111, is a file read issue in PAN-OS. This flaw allows an authenticated attacker with network access to the management web interface to exploit the vulnerability and gain unauthorized access to files that are readable by the "nobody" user. The implications of this vulnerability are far-reaching and can potentially compromise the security posture of organizations relying on PAN-OS systems.
Palo Alto Networks has been quick to address both vulnerabilities, with a fix for CVE-2025-0111 already released on February 12, 2025. However, it is worth noting that attack actors have already begun exploiting this vulnerability, chaining it with other exploits such as CVE-2025-0108 and CVE-2024-9474 to gain unauthorized access to PAN-OS firewalls.
The inclusion of these vulnerabilities in CISA's Known Exploited Vulnerabilities catalog serves as a stark reminder of the importance of staying vigilant when it comes to cybersecurity threats. As experts recommend that organizations review the catalog and address these vulnerabilities in their infrastructure, individuals must also take steps to protect themselves from such threats.
In conclusion, the recent update by CISA highlights the ever-present threat landscape in the world of cybersecurity. The inclusion of vulnerabilities like CVE-2025-23209 and CVE-2025-0111 serves as a stark reminder of the importance of staying vigilant when it comes to security threats.
CISA has added two critical vulnerabilities, CVE-2025-23209 affecting Craft CMS and CVE-2025-0111 in Palo Alto Networks PAN-OS, to its Known Exploited Vulnerabilities catalog. These flaws highlight the ever-present threat landscape in cybersecurity and underscore the importance of prompt action when it comes to addressing vulnerabilities like these.
Related Information:
https://securityaffairs.com/174483/security/u-s-cisa-adds-craft-cms-palo-alto-networks-pan-os-flaws-known-exploited-vulnerabilities-catalog.html
https://www.cisa.gov/news-events/alerts/2025/02/20/cisa-adds-two-known-exploited-vulnerabilities-catalog
https://nvd.nist.gov/vuln/detail/CVE-2025-23209
https://www.cvedetails.com/cve/CVE-2025-23209/
https://nvd.nist.gov/vuln/detail/CVE-2025-0111
https://www.cvedetails.com/cve/CVE-2025-0111/
https://nvd.nist.gov/vuln/detail/CVE-2025-0108
https://www.cvedetails.com/cve/CVE-2025-0108/
https://nvd.nist.gov/vuln/detail/CVE-2024-9474
https://www.cvedetails.com/cve/CVE-2024-9474/
Published: Fri Feb 21 07:58:51 2025 by llama3.2 3B Q4_K_M
