Update paloalto_panos_cve_2025_0108.yaml added cisa_kev (#1017)

securestep9 · web-flow · commit 2456cd195137 · 2025-02-19T16:30:59.000Z
Adding cisa_kev profile to the module: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has just added this CVE-2025-0108 impacting Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
diff --git a/nettacker/modules/vuln/paloalto_panos_cve_2025_0108.yaml b/nettacker/modules/vuln/paloalto_panos_cve_2025_0108.yaml
@@ -7,6 +7,7 @@ info:
     - https://security.paloaltonetworks.com/CVE-2025-0108
     - https://www.assetnote.io/resources/research/nginx-apache-path-confusion-to-auth-bypass-in-pan-os
     - https://www.bleepingcomputer.com/news/security/hackers-exploit-authentication-bypass-in-palo-alto-networks-pan-os/
+    - https://thehackernews.com/2025/02/cisa-adds-palo-alto-networks-and.html
   profiles:
     - vuln
     - vulnerability
@@ -16,6 +17,7 @@ info:
     - paloalto
     - paloalto_panos
     - panos
+    - cisa_kev
   
 
 payloads:
