Palo Alto Expedition: Unauth Deletion of www-data Files (CVE-2025-0105)
CVE-2025-0105 Published on January 11, 2025

Expedition: Arbitrary File Deletion Vulnerability
An arbitrary file deletion vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to delete arbitrary files accessible to the www-data user on the host filesystem.

Vendor Advisory NVD

Timeline

2025-01-08

Initial publication

Weakness Type

External Control of File Name or Path

The software allows user input to control or influence paths or file names that are used in filesystem operations.

Products Associated with CVE-2025-0105

Want to know whenever a new CVE is published for Palo Alto Networks Expedition? stack.watch will email you.

Palo Alto Networks Expedition

Affected Versions

Palo Alto Networks Cloud NGFW:

Version All is unaffected.

Palo Alto Networks Expedition:

Version 1 and below 1.2.101 is affected.

Palo Alto Networks Panorama:

Version All is unaffected.

Palo Alto Networks PAN-OS:

Version All is unaffected.

Palo Alto Networks Prisma Access:

Version All is unaffected.

Exploit Probability

EPSS

4.37%

Percentile

88.83%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.