Skip to main content

Expedition CVE-2025-0106

MEDIUM
Improper Neutralization of Wildcards or Matching Symbols (CWE-155)
2025-01-11 psirt@paloaltonetworks.com
6.9
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
6.9 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:H/U:Green

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:H/U:Green
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

2
Analysis Generated
Mar 28, 2026 - 18:03 vuln.today
CVE Published
Jan 11, 2025 - 03:15 nvd
MEDIUM 6.9

DescriptionCVE.org

A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem.

AnalysisAI

A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-155. A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem. Affected products include: Paloaltonetworks Expedition.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2025-0107 HIGH POC
7.7 Jan 11

Palo Alto Networks Expedition contains an unauthenticated OS command injection vulnerability that allows attackers to ex

CVE-2024-5910 CRITICAL POC
9.3 Jul 10

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account

CVE-2024-9463 CRITICAL POC
9.9 Oct 09

An OS command injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to run arbitra

CVE-2018-10143 CRITICAL POC
9.8 Dec 12

The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated attacker with remote a

CVE-2024-9465 CRITICAL POC
9.2 Oct 09

An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to reveal Expedition

CVE-2024-9464 CRITICAL
9.3 Oct 09

An OS command injection vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to run arbitrary

CVE-2019-1571 MEDIUM POC
4.8 Mar 26

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML

CVE-2019-1570 MEDIUM POC
4.8 Mar 26

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML

CVE-2019-1569 MEDIUM POC
4.8 Mar 26

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML

CVE-2024-9466 HIGH
8.2 Oct 09

A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition allows an authenticated atta

CVE-2018-10142 HIGH
7.5 Nov 27

The Expedition Migration tool 1.0.106 and earlier may allow an unauthenticated attacker to enumerate files on the operat

CVE-2024-9467 HIGH
7.0 Oct 09

A reflected XSS vulnerability in Palo Alto Networks Expedition enables execution of malicious JavaScript in the context

Share

CVE-2025-0106 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy