paloaltonetworks

310 tracked vulnerabilities.

CVE-2017-5328 HIGH
Palo Alto Networks Terminal Services Agent <7.0.7 - Info Disclosure
Jan 27, 2017
CVSS 7.5
EPSS 0.00
CVE-2016-8610 HIGH
OpenSSL 0.9.8 1.0.1 1.0.2-1.0.2h 1.1.0 - Denial of Service via ALERT Packet Processing
Nov 13, 2017
CVSS 7.5
EPSS 0.71
CVE-2016-9151 HIGH
Palo Alto Networks PAN-OS <7.1.6 - Privilege Escalation
Nov 19, 2016
CVSS 7.8
EPSS 0.00
CVE-2016-9150 CRITICAL
Palo Alto Networks PAN-OS <7.1.6 - Buffer Overflow
Nov 19, 2016
CVSS 9.8
EPSS 0.63
CVE-2016-9149 MEDIUM
Palo Alto Networks PAN-OS <7.1.6 - XPath Injection
Nov 19, 2016
CVSS 6.5
EPSS 0.00
CVE-2016-5195 HIGH KEV
Linux Kernel 2.x-4.x < 4.8.3 - Local Privilege Escalation via Dirty COW Race Condition
Nov 10, 2016
CVSS 7.0
EPSS 0.94
CVE-2016-1712 HIGH
Palo Alto Networks PAN-OS <7.0.8 - Privilege Escalation
Aug 02, 2016
CVSS 7.8
EPSS 0.00
CVE-2016-2219 MEDIUM
PAN-OS 7.x - Authenticated Cross-Site Scripting
Jul 12, 2016
CVSS 5.4
EPSS 0.00
CVE-2016-4971 HIGH
GNU wget < 1.18 - Arbitrary File Write via HTTP-to-FTP Redirect
Jun 30, 2016
CVSS 8.8
EPSS 0.75
CVE-2016-3657 CRITICAL
Palo Alto Networks PAN-OS <7.0.5 - Buffer Overflow
Apr 12, 2016
CVSS 9.8
EPSS 0.03
CVE-2016-3656 HIGH
Palo Alto Networks PAN-OS <7.0.5H2 - DoS
Apr 12, 2016
CVSS 7.5
EPSS 0.01
CVE-2016-3655 CRITICAL
Palo Alto Networks PAN-OS <7.0.5 - RCE
Apr 12, 2016
CVSS 9.8
EPSS 0.01
CVE-2016-3654 HIGH
Palo Alto Networks PAN-OS <7.0.5H2 - Command Injection
Apr 12, 2016
CVSS 7.2
EPSS 0.01
CVE-2015-6531 HIGH
Palo Alto Networks PAN-OS < 6.0 - Remote Code Execution via Firmware Image File
Jun 01, 2017
CVSS 7.8
EPSS 0.01
CVE-2015-4162
PAN-OS < 5.0.16, 6.x < 6.0.8, 6.1.x < 6.1.4 - Authenticated XML External Entity Injection
Jun 02, 2015
EPSS 0.00
CVE-2014-3764
PAN-OS < 5.0.15, 5.1.x < 5.1.10, 6.0.x < 6.0.6 - Cross-Site Scripting
Jan 06, 2015
EPSS 0.00
CVE-2013-5664
PAN-OS < 4.1.13 and 5.0.x < 5.0.6 - Cross-Site Scripting via Web-Based Device-Management API
Aug 31, 2013
EPSS 0.01
CVE-2013-5663
PAN-OS < 4.0.14, 4.1.x < 4.1.11, 5.0.x < 5.0.2 - Security Policy Bypass via App-ID Cache Pollution
Aug 31, 2013
EPSS 0.01
CVE-2012-6606
Palo Alto Networks GlobalProtect < 1.1.7 and NetConnect - Man-in-the-Middle Certificate Spoofing
Aug 31, 2013
EPSS 0.00
CVE-2012-6605
PAN-OS < 3.1.11 and 4.0.x < 4.0.9 - Authenticated Remote Code Execution
Aug 31, 2013
EPSS 0.03
CVE-2012-6604
PAN-OS < 3.1.11 and 4.0.x < 4.0.9 - Authenticated Remote Code Execution
Aug 31, 2013
EPSS 0.03
CVE-2012-6603
PAN-OS < 3.1.12, 4.0.x < 4.0.10, 4.1.x < 4.1.4 - Unauthenticated Authentication Bypass
Aug 31, 2013
EPSS 0.02
CVE-2012-6602
Palo Alto Networks PAN-OS < 3.1.10 and 4.0.x < 4.0.4 - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.01
CVE-2012-6601
PAN-OS < 3.1.12, 4.0.x < 4.0.10, 4.1.x < 4.1.4 - Remote Code Execution
Aug 31, 2013
EPSS 0.09
CVE-2012-6600
PAN-OS 4.0.x < 4.0.9 and 4.1.x < 4.1.2 - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.01
Products
pan-os 211 globalprotect 34 cortex_xdr_agent 19 expedition 16 cortex_xsoar 9 prisma_access 7 prisma_cloud 4 expedition_migration_tool 3 secdo 3 terminal_services_agent 3 traps 3 bridgecrew_checkov 2 cortex_xsoar_commonscripts 1 demisto 1 minemeld 1 netconnect 1 twistlock 1 vm-series 1
Quick Filters
Critical CVEs With Exploits In CISA KEV