Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / paloaltonetworks

paloaltonetworks

310 tracked vulnerabilities.

CVE-2024-5919 MEDIUM

PAN-OS 10.1.0-10.1.9 - Authenticated XML External Entity Injection

CVE-2024-5918 MEDIUM

Palo Alto Networks PAN-OS - Improper Certificate Validation in GlobalProtect Portal/Gateway

CVE-2024-5917 MEDIUM

PAN-OS 10.1.0-10.1.6 - Authenticated Server-Side Request Forgery via Administrative Web Interface

CVE-2024-2552 MEDIUM

PAN-OS >=10.2.0 <10.2.7 - Authenticated Command Injection via Management Plane

CVE-2024-2551 HIGH

Palo Alto Networks PAN-OS 10.1.0-10.1.13 - Unauthenticated Denial of Service via Crafted Data Plane Packet

CVE-2024-2550 HIGH

Palo Alto Networks PAN-OS 10.2.0-10.2.6 DoS via GlobalProtect Gateway Null Pointer Dereference

CVE-2024-9473 HIGH

Palo Alto Networks GlobalProtect - Privilege Escalation via MSI Installer Repair Functionality

CVE-2024-9471 MEDIUM

Palo Alto Networks PAN-OS 9.0.0-9.9.9 - Authenticated Privilege Escalation via XML API Key Misuse

CVE-2024-9469 MEDIUM

Cortex XDR Agent 7.9-7.9.101 - Detection Mechanism Bypass via Non-Administrative Privileges

CVE-2024-9468 HIGH

Palo Alto Networks PAN-OS >= 10.2.0 < 10.2.4 - Unauthenticated Denial of Service via Crafted Data Plane Packet

CVE-2024-9467 MEDIUM

Palo Alto Networks Expedition 1.2.0-1.2.95 - Reflected Cross-Site Scripting

CVE-2024-9466 MEDIUM

Palo Alto Networks Expedition 1.2.0-1.2.95 - Authenticated Sensitive Information Disclosure in Log Files

CVE-2024-9465 CRITICAL KEVNUCLEI

Palo Alto Networks Expedition 1.2.0-1.2.95 - Unauthenticated SQL Injection and Arbitrary File Write

CVE-2024-9464 MEDIUM

Palo Alto Networks Expedition 1.2.0-1.2.95 - Authenticated OS Command Injection

CVE-2024-9463 HIGH KEVNUCLEI

Palo Alto Networks Expedition 1.2.0-1.2.95 - Unauthenticated OS Command Injection

CVE-2024-8691 HIGH

Palo Alto Networks PAN-OS - Privilege Escalation

CVE-2024-8690 MEDIUM

Palo Alto Networks Cortex XDR < - Privilege Escalation

CVE-2024-8688 MEDIUM

Palo Alto Networks PAN-OS - Info Disclosure

CVE-2024-8687 HIGH

Palo Alto Networks PAN-OS - Info Disclosure

CVE-2024-8686 HIGH

Palo Alto Networks PAN-OS - Command Injection

CVE-2024-5916 MEDIUM

Palo Alto Networks PAN-OS - Info Disclosure

CVE-2024-5915 HIGH

GlobalProtect 5.1.0-5.1.8 - Privilege Escalation

CVE-2024-5914 CRITICAL

Cortex XSOAR CommonScripts < 1.12.33 - Unauthenticated Command Injection

CVE-2024-5913 MEDIUM

Palo Alto Networks PAN-OS 10.1.0-10.1.13 - Privilege Escalation via Physical File System Tampering

CVE-2024-5911 MEDIUM

Palo Alto Networks Pan-OS 10.1.0-10.1.8 - Authenticated Arbitrary File Upload

Previous Page 2 of 13 Next

Products

pan-os 211 globalprotect 34 cortex_xdr_agent 19 expedition 16 cortex_xsoar 9 prisma_access 7 prisma_cloud 4 expedition_migration_tool 3 secdo 3 terminal_services_agent 3 traps 3 bridgecrew_checkov 2 cortex_xsoar_commonscripts 1 demisto 1 minemeld 1 netconnect 1 twistlock 1 vm-series 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy