CVE-2025-0133 - Vulnerability Details

- PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal

Description

A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect™ gateway and portal features of Palo Alto Networks PAN-OS® software enables execution of malicious JavaScript in the context of an authenticated Captive Portal user's browser when they click on a specially crafted link. The primary risk is phishing attacks that can lead to credential theft—particularly if you enabled Clientless VPN.

There is no availability impact to GlobalProtect features or GlobalProtect users. Attackers cannot use this vulnerability to tamper with or modify contents or configurations of the GlobalProtect portal or gateways. The integrity impact of this vulnerability is limited to enabling an attacker to create phishing and credential-stealing links that appear to be hosted on the GlobalProtect portal.

For GlobalProtect users with Clientless VPN enabled, there is a limited impact on confidentiality due to inherent risks of Clientless VPN that facilitate credential theft. You can read more about this risk in the informational bulletin PAN-SA-2025-0005 https://security.paloaltonetworks.com/PAN-SA-2025-0005 https://security.paloaltonetworks.com/PAN-SA-2025-0005 . There is no impact to confidentiality for GlobalProtect users if you did not enable (or you disable) Clientless VPN.

Published: 2025-05-14

Score: 2.7 Low

EPSS: 1.8% Low

KEV: No

Impact:

Action:

Analysis

Impact

A reflected cross‑site scripting (XSS) vulnerability in the GlobalProtect gateway and portal features allows an attacker to execute malicious JavaScript in the context of an authenticated Captive Portal user's browser when a specially crafted link is clicked. This enables phishing attacks that can lead to credential theft. No availability or configuration changes to the portal or gateway can be performed through this vulnerability; the impact is limited to in‑browser credential theft.

Affected Systems

Palo Alto Networks Cloud NGFW, PAN‑OS, and Prisma Access appliances are affected. Versions up through PAN‑OS 11.2.4‑h8, 11.2.6, 11.1.10‑h1, 10.2.16‑h1, and older unsupported releases are impacted. Upgrading to the fixed releases listed—11.2.4‑h9 or later, 11.2.7 or later, 11.1.6‑h14 or later, 10.2.16‑h1 or later, and any newer supported version—remediates the issue.

Risk and Exploitability

The CVSS score of 2.7 indicates low severity, but the EPSS score of 2% signals a non‑negligible probability of exploitation. The vulnerability is not currently listed in the CISA KEV catalog. Attackers would require an authenticated captive portal user's click on a crafted link; they could inject JavaScript to steal credentials. No integrity or availability impact beyond credential theft.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Palo Alto Networks

Cloud NGFW

unaffected

Version	Status	Constraints
`All`	affected	< 11.2.8

Palo Alto Networks

PAN-OS

unaffected

Version	Status	Constraints
`11.2.0`	affected	< 11.2.7
`11.1.0`	affected	< 11.1.6-h14
`10.2.0`	affected	< 10.2.16-h1
`10.1.0`	affected	—

Palo Alto Networks

Prisma Access

affected

Version	Status	Constraints
`All`	affected	—

No data.

No data available yet.

Remediation

Vendor Workaround

Customers with a Threat Prevention subscription can block attacks for this vulnerability by enabling Threat ID 510003 and 510004 from Applications and Threats content version 8995. For all Cloud NGFW, PAN-OS, and Prisma Access deployments, it is crucial to ensure that Vulnerability Protection profiles are explicitly applied to the security rules that process traffic from GlobalProtect interfaces. This ensures the Threat Prevention signatures are actively enforced. For detailed guidance on applying Vulnerability Protection to GlobalProtect interfaces, please refer to: https://live.paloaltonetworks.com/t5/globalprotect-articles/applying-vulnerability-protection-to-globalprotect-interfaces/ta-p/340184. You can also disable Clientless VPN to reduce impact in the event of exploitation, though this will not block the exploit in it's entirety. For more information, review the security advisory PAN-SA-2025-0005 (https://security.paloaltonetworks.com/PAN-SA-2025-0005). Previous versions of this advisory have listed the recommended content version as 8970 and 8990. We now recommend 8995 as it has the latest updates to the signatures to cover additional exploit variants.

OpenCVE Recommended Actions

Upgrade to any supported PAN‑OS 11.2.4‑h9 or later, 11.2.7 or later, 11.1.6‑h14 or later, or equivalent newer releases as listed by Palo Alto Networks.
Enable Threat Prevention signatures Threat ID 510003 and 510004 (content version 8995) and apply Vulnerability Protection profiles to security rules that process traffic from GlobalProtect interfaces.
If Clientless VPN is not required, disable it to reduce the attack surface; otherwise ensure the clientless service is tightly controlled by policy.

Generated by OpenCVE AI on April 28, 2026 at 01:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-14899	A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect™ gateway and portal features of Palo Alto Networks PAN-OS® software enables execution of malicious JavaScript in the context of an authenticated Captive Portal user's browser when they click on a specially crafted link. The primary risk is phishing attacks that can lead to credential theft—particularly if you enabled Clientless VPN. There is no availability impact to GlobalProtect features or GlobalProtect users. Attackers cannot use this vulnerability to tamper with or modify contents or configurations of the GlobalProtect portal or gateways. The integrity impact of this vulnerability is limited to enabling an attacker to create phishing and credential-stealing links that appear to be hosted on the GlobalProtect portal. For GlobalProtect users with Clientless VPN enabled, there is a limited impact on confidentiality due to inherent risks of Clientless VPN that facilitate credential theft. You can read more about this risk in the informational bulletin PAN-SA-2025-0005 https://security.paloaltonetworks.com/PAN-SA-2025-0005 https://security.paloaltonetworks.com/PAN-SA-2025-0005 . There is no impact to confidentiality for GlobalProtect users if you did not enable (or you disable) Clientless VPN.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0184.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://security.paloaltonetworks.com/CVE-2025-0133

History

Fri, 03 Apr 2026 00:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
CPEs	cpe:2.3:o:paloaltonetworks:pan-os:10.1.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.10:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.13:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.14:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.7:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:::::::*	cpe:2.3:o:palo_alto_networks:cloud_ngfw:::::::: cpe:2.3:o:palo_alto_networks:pan-os:::::::: cpe:2.3:o:palo_alto_networks:pan-os:10.1.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.10:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.13:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.4:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.7:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.1.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.15:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.4:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.6:::::::* cpe:2.3:o:palo_alto_networks:prisma_access::::::::
Vendors & Products	Paloaltonetworks Paloaltonetworks pan-os	Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
Metrics	cvssV4_0 `{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:D/RE:M/U:Amber'}`	cvssV4_0 `{'score': 2.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/S:N/AU:N/R:U/V:D/RE:M/U:Amber'}`

Sat, 12 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.04327}`	epss `{'score': 0.03234}`

Wed, 14 May 2025 21:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 14 May 2025 18:30:00 +0000

Type	Values Removed	Values Added
Description		A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect™ gateway and portal features of Palo Alto Networks PAN-OS® software enables execution of malicious JavaScript in the context of an authenticated Captive Portal user's browser when they click on a specially crafted link. The primary risk is phishing attacks that can lead to credential theft—particularly if you enabled Clientless VPN. There is no availability impact to GlobalProtect features or GlobalProtect users. Attackers cannot use this vulnerability to tamper with or modify contents or configurations of the GlobalProtect portal or gateways. The integrity impact of this vulnerability is limited to enabling an attacker to create phishing and credential-stealing links that appear to be hosted on the GlobalProtect portal. For GlobalProtect users with Clientless VPN enabled, there is a limited impact on confidentiality due to inherent risks of Clientless VPN that facilitate credential theft. You can read more about this risk in the informational bulletin PAN-SA-2025-0005 https://security.paloaltonetworks.com/PAN-SA-2025-0005 https://security.paloaltonetworks.com/PAN-SA-2025-0005 . There is no impact to confidentiality for GlobalProtect users if you did not enable (or you disable) Clientless VPN.
Title		PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal
First Time appeared		Paloaltonetworks Paloaltonetworks pan-os
Weaknesses		CWE-79
CPEs		cpe:2.3:o:paloaltonetworks:pan-os:10.1.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.10:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.13:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.14:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.7:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:::::::*
Vendors & Products		Paloaltonetworks Paloaltonetworks pan-os
References		https://security.paloaltonetworks.com/CVE-2025-0133
Metrics		cvssV4_0 `{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:D/RE:M/U:Amber'}`

Subscriptions

Palo Alto Networks Cloud Ngfw Pan-os Prisma Access

MITRE

Status: PUBLISHED

Assigner: palo_alto

Published: 2025-05-14T18:07:36.381Z

Updated: 2026-04-02T23:38:11.074Z

Reserved: 2024-12-20T23:23:33.828Z

Link: CVE-2025-0133

Vulnrichment

Updated: 2025-05-14T20:51:12.264Z

NVD

Status : Deferred

Published: 2025-05-14T19:15:51.517

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-0133

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-28T01:45:18Z

Weaknesses

CWE-79

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object