paloaltonetworks

348 tracked vulnerabilities.

CVE-2019-1566 MEDIUM
PAN-OS <7.1.21, <8.0.14, <8.1.5 - XSS
Jan 30, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-1565 MEDIUM
PAN-OS <7.1.21, <8.0.14, <8.1.5 - XSS
Jan 30, 2019
CVSS 5.4
EPSS 0.01
CVE-2018-10143 CRITICAL
Palo Alto Networks Expedition <= 1.0.107 - Unauthenticated Remote Code Execution
Dec 12, 2018
CVSS 9.8
EPSS 0.25
CVE-2018-10142 HIGH
Expedition Migration Tool <1.0.106 - Info Disclosure
Nov 27, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-10141 MEDIUM NUCLEI
Palo Alto Networks PAN-OS <8.1.4 - XSS
Oct 12, 2018
CVSS 6.1
EPSS 0.04
CVE-2018-18065 MEDIUM
Net-SNMP < 5.8 - Authenticated Denial of Service via Crafted UDP Packet
Oct 08, 2018
CVSS 6.5
EPSS 0.17
CVE-2018-14634 HIGH KEV
Linux kernel <4.14 - Privilege Escalation
Sep 25, 2018
CVSS 7.8
EPSS 0.15
CVE-2018-10140 MEDIUM
Palo Alto Networks PAN-OS <8.1.2 - DoS
Aug 16, 2018
CVSS 4.3
EPSS 0.02
CVE-2018-10139 MEDIUM
Palo Alto Networks PAN-OS <6.1.21,<7.1.18,<8.0.11 - XSS
Aug 16, 2018
CVSS 6.1
EPSS 0.02
CVE-2018-9337 MEDIUM
PAN-OS < 6.1.20, 7.1.17, 8.0.10, 8.1.1 - Cross-Site Scripting in Web Interface Administration Page
Jul 03, 2018
CVSS 5.4
EPSS 0.01
CVE-2018-9335 MEDIUM
PAN-OS < 6.1.20 - Cross-Site Scripting in Session Browser
Jul 03, 2018
CVSS 5.4
EPSS 0.01
CVE-2018-9334 MEDIUM
PAN-OS <= 6.1.20, <= 7.1.16, <= 8.0.8, 8.1.0 - GlobalProtect Password Hash Exposure via HTML Manipulation
Jul 03, 2018
CVSS 5.5
EPSS 0.00
CVE-2018-9242 MEDIUM
PAN-OS < 6.1.20 - Arbitrary File Deletion via Management Web Interface
Jul 03, 2018
CVSS 5.5
EPSS 0.00
CVE-2018-7636 MEDIUM
PAN-OS - Cross-Site Scripting via URL Filtering Continue Page
Jul 03, 2018
CVSS 6.1
EPSS 0.01
CVE-2017-17841 MEDIUM
Palo Alto Networks PAN-OS <8.0.7 - RCE
Jan 10, 2018
CVSS 5.9
EPSS 0.02
CVE-2017-16878 MEDIUM
Palo Alto Networks PAN-OS <8.0.7 - XSS
Jan 10, 2018
CVSS 6.1
EPSS 0.01
CVE-2017-15941 MEDIUM
Palo Alto Networks PAN-OS < 6.1.19, 7.0.x < 7.0.19, 7.1.x < 7.1.14, 8.0.x < 8.0.7 - Cross-Site Scripting
Jan 10, 2018
CVSS 6.1
EPSS 0.01
CVE-2017-15944 CRITICAL KEVNUCLEI
Palo Alto Network PAN-OS - Remote Code Execution
Dec 11, 2017
CVSS 9.8
EPSS 0.98
CVE-2017-15943 MEDIUM
PAN-OS < 6.1.19, 7.0.x < 7.0.19, 7.1.x < 7.1.14 - Server-Side Request Forgery via External Entity Parsing
Dec 11, 2017
CVSS 5.3
EPSS 0.02
CVE-2017-15942 HIGH
Palo Alto Networks PAN-OS DoS via Management Interface
Dec 11, 2017
CVSS 7.5
EPSS 0.02
CVE-2017-15940 CRITICAL
PAN-OS < 6.1.19, 7.0.x < 7.0.19, 7.1.x < 7.1.14, 8.0.x < 8.0.6 - Authenticated RCE via Web Interface
Dec 11, 2017
CVSS 9.8
EPSS 0.05
CVE-2017-15870 MEDIUM
Palo Alto Networks GlobalProtect Agent <4.0.3 - Privilege Escalation
Dec 11, 2017
CVSS 6.7
EPSS 0.00
CVE-2017-9458 CRITICAL
Palo Alto Networks PAN-OS XML External Entity Injection in GlobalProtect Gateway Interface
Sep 07, 2017
CVSS 9.8
EPSS 0.02
CVE-2017-12416 MEDIUM
Palo Alto Networks PAN-OS <6.1.18, <7.0.17, <7.1.12, <8.0.3 - XSS
Sep 07, 2017
CVSS 6.1
EPSS 0.01
CVE-2017-9467 MEDIUM
Palo Alto Networks PAN-OS <6.1.18, <7.0.16, <7.1.11, <8.0.3 - XSS
Aug 02, 2017
CVSS 6.1
EPSS 0.01