paloaltonetworks

348 tracked vulnerabilities.

CVE-2016-3654 HIGH
Palo Alto Networks PAN-OS <7.0.5H2 - Command Injection
Apr 12, 2016
CVSS 7.2
EPSS 0.03
CVE-2015-6531 HIGH
Palo Alto Networks PAN-OS < 6.0 - Remote Code Execution via Firmware Image File
Jun 01, 2017
CVSS 7.8
EPSS 0.03
CVE-2015-4162
PAN-OS < 5.0.16, 6.x < 6.0.8, 6.1.x < 6.1.4 - Authenticated XML External Entity Injection
Jun 02, 2015
EPSS 0.01
CVE-2014-3764
PAN-OS < 5.0.15, 5.1.x < 5.1.10, 6.0.x < 6.0.6 - Cross-Site Scripting
Jan 06, 2015
EPSS 0.01
CVE-2013-5664
PAN-OS < 4.1.13 and 5.0.x < 5.0.6 - Cross-Site Scripting via Web-Based Device-Management API
Aug 31, 2013
EPSS 0.02
CVE-2013-5663
PAN-OS < 4.0.14, 4.1.x < 4.1.11, 5.0.x < 5.0.2 - Security Policy Bypass via App-ID Cache Pollution
Aug 31, 2013
EPSS 0.03
CVE-2012-6606
Palo Alto Networks GlobalProtect < 1.1.7 and NetConnect - Man-in-the-Middle Certificate Spoofing
Aug 31, 2013
EPSS 0.01
CVE-2012-6605
PAN-OS < 3.1.11 and 4.0.x < 4.0.9 - Authenticated Remote Code Execution
Aug 31, 2013
EPSS 0.03
CVE-2012-6604
PAN-OS < 3.1.11 and 4.0.x < 4.0.9 - Authenticated Remote Code Execution
Aug 31, 2013
EPSS 0.03
CVE-2012-6603
PAN-OS < 3.1.12, 4.0.x < 4.0.10, 4.1.x < 4.1.4 - Unauthenticated Authentication Bypass
Aug 31, 2013
EPSS 0.04
CVE-2012-6602
Palo Alto Networks PAN-OS < 3.1.10 and 4.0.x < 4.0.4 - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.03
CVE-2012-6601
PAN-OS < 3.1.12, 4.0.x < 4.0.10, 4.1.x < 4.1.4 - Remote Code Execution
Aug 31, 2013
EPSS 0.04
CVE-2012-6600
PAN-OS 4.0.x < 4.0.9 and 4.1.x < 4.1.2 - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.03
CVE-2012-6599
PAN-OS 4.0.x < 4.0.8 and 4.1.x < 4.1.1 - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.03
CVE-2012-6598
PAN-OS 4.0.x - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.03
CVE-2012-6597
Palo Alto Networks PAN-OS < 3.1.11 and 4.0.x < 4.0.9 - Authenticated Denial of Service via Command-Line Interface
Aug 31, 2013
EPSS 0.01
CVE-2012-6596
Palo Alto Networks PAN-OS 4.0.x < 4.0.9 and 4.1.x < 4.1.3 - Cleartext LDAP Password Exposure in authd.log
Aug 31, 2013
EPSS 0.01
CVE-2012-6595
PAN-OS 4.0.x < 4.0.9 and 4.1.x < 4.1.2 - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.03
CVE-2012-6594
Palo Alto Networks PAN-OS < 3.1.11, 4.0.x < 4.0.8, 4.1.x < 4.1.1 - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.03
CVE-2012-6593
Palo Alto Networks PAN-OS < 3.1.10 and 4.0.x < 4.0.4 - Remote Code Execution
Aug 31, 2013
EPSS 0.04
CVE-2012-6592
Palo Alto Networks PAN-OS < 3.1.10 and 4.0.x < 4.0.5 - Remote Code Execution
Aug 31, 2013
EPSS 0.04
CVE-2012-6591
PAN-OS < 3.1.10 and 4.0.x < 4.0.5 - Authenticated OS Command Injection
Aug 31, 2013
EPSS 0.03
CVE-2012-6590
PAN-OS 4.0.x - Exposure of Sensitive Information via Verbose Error Messages
Aug 31, 2013
EPSS 0.02