{"vulnerability": "CVE-2025-0137", "sightings": [{"uuid": "38f99097-d794-4ae5-a581-c71cc1021776", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0137", "type": "seen", "source": "https://bsky.app/profile/ripjyr.bsky.social/post/3ltngtnw7kc2j", "content": "", "creation_timestamp": "2025-07-10T23:03:23.562264Z"}, {"uuid": "98a3c645-f3a2-4d9f-b6ae-09eb03baba0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0137", "type": "seen", "source": "https://bsky.app/profile/ripjyr.bsky.social/post/3ltpjvf7br22r", "content": "", "creation_timestamp": "2025-07-11T19:03:22.148481Z"}, {"uuid": "842beece-8759-4fef-a4a4-d0f7f6f22989", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0137", "type": "seen", "source": "https://security.paloaltonetworks.com/CVE-2025-0137", "content": "", "creation_timestamp": "2025-05-14T14:00:00.000000Z"}, {"uuid": "ecb132d3-aa8c-428f-9922-9d5ae0d9622c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0137", "type": "seen", "source": "https://bsky.app/profile/ripjyr.bsky.social/post/3lp5otxhjcc2y", "content": "", "creation_timestamp": "2025-05-14T19:03:21.174427Z"}, {"uuid": "21d275d2-3025-43d6-b3ca-7013076e96b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0137", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16363", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-0137\n\ud83d\udd25 CVSS Score: 4.8 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:C/RE:M/U:Amber)\n\ud83d\udd39 Description: An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS\u00ae software enables a malicious authenticated read-write administrator to impersonate another legitimate authenticated PAN-OS administrator.\n\n\nThe attacker must have network access to the management web interface to exploit this issue. You greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended  critical deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 .\n\ud83d\udccf Published: 2025-05-14T18:09:32.036Z\n\ud83d\udccf Modified: 2025-05-14T18:09:32.036Z\n\ud83d\udd17 References:\n1. https://security.paloaltonetworks.com/CVE-2025-0137", "creation_timestamp": "2025-05-14T18:31:59.000000Z"}]}