Back to search
CVE-2025-0138
Published: May 14, 2025
Modified: Jun 23, 2025
PUBLISHED
Description
Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access. Compute in Prisma Cloud Enterprise Edition is not affected by this issue.
| Vendor | Product | Versions |
|---|---|---|
Palo Alto Networks | Prisma Cloud Compute Edition | affected 1 - < 34.01.129 |
Palo Alto Networks | Compute in Prisma Cloud Enterprise Edition | unaffected All |
Weaknesses (CWE)
References
https://security.paloaltonetworks.com/CVE-2025-0138
vendor-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now