Cybersecurity large Palo Alto Networks issued a collection of patches on June 11 for vulnerabilities throughout its vary of merchandise, together with GlobalProtect App, Cortex XDR, PAN-OS, and the Prisma Entry Browser.
Six flaws are in Palo Alto’s merchandise, starting from low – with CVSS scores of 0.3, 1 and a couple of.3 – to excessive severity.
Essentially the most important vulnerability, tracked as CVE-2025-4232, is an authenticated code injection affecting GlobalProtect App variations 6.0 to six.3 on macOS. It was attributed a high-severity CVSS rating of seven.1 and ought to be patched with “reasonable” urgency, based on Palo Alto.
Two different flaws, authenticated admin command injection vulnerabilities affecting PAN-OS variations 10.1 to 11.2, have been attributed a medium severity rating (5.7 for CVE-2025-4230 and 6.1 for CVE-2025-4231).
Lastly, Palo Alto additionally applied a set of 11 fixes within the Google Chrome browser which affected the safety vendor’s Prisma Entry Browser. An extra patch was issued for CVE-2025-4233, an inappropriate implementation within the cache, additionally affecting the Prisma Entry Browser.
The set of 12 weaknesses was attributed a high-severity CVSS rating of 8.6.
Chrome’s open-source model, Chromium, is the constructing block of Palo Alto’s Prisma Entry Browser.
Palo Alto stated it’s not conscious of any cases the place these vulnerabilities have been exploited in assaults.
Photograph credit: Tada Photos/Michael Vi/Shutterstock
Learn now: Hackers Chain Exploits of Three Palo Alto Networks Firewall Flaws
