paloaltonetworks
310 tracked vulnerabilities.
CVE-2023-6793
LOW
Palo Alto Networks PAN-OS 9.1.0-9.1.16 - Authenticated XML API Key Revocation via Privilege Escalation
Dec 13, 2023
CVSS 2.7
EPSS 0.00
CVE-2023-6792
MEDIUM
PAN-OS 8.1.0-8.1.23 - Authenticated OS Command Injection via XML API
Dec 13, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-6791
MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
Dec 13, 2023
CVSS 4.9
EPSS 0.00
CVE-2023-6790
HIGH
PAN-OS 8.1.0-8.1.24 - DOM-Based Cross-Site Scripting via Crafted Web Interface Link
Dec 13, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-6789
MEDIUM
PAN-OS 8.1.0-8.1.25 - Authenticated Stored Cross-Site Scripting via Web Interface
Dec 13, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-3282
MEDIUM
Cortex XSOAR < 6.10.0 - Local Privilege Escalation via Engine Software
Nov 08, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-3280
MEDIUM
Palo Alto Networks Cortex XDR Agent 5.0-5.0.12.22203 7.9.0-7.9.3 7.9.0-7.9.101 - Local Protection Mechanism Bypass
Sep 13, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-38046
MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
Jul 12, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-0010
MEDIUM
Palo Alto Networks PAN-OS 8.1.0-8.1.23 - Reflected Cross-Site Scripting via Captive Portal
Jun 14, 2023
CVSS 5.4
EPSS 0.01
CVE-2023-0009
HIGH
Paloaltonetworks Palo Alto Networks GlobalProtect - Privilege Escalation
Jun 14, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-0008
MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
May 10, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-0007
MEDIUM
PAN-OS 8.1.0-8.1.24 - Authenticated Stored Cross-Site Scripting in Web Interface
May 10, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-0006
MEDIUM
Palo Alto Networks GlobalProtect < - Privilege Escalation
Apr 12, 2023
CVSS 6.3
EPSS 0.00
CVE-2023-0005
MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
Apr 12, 2023
CVSS 4.1
EPSS 0.00
CVE-2023-0004
MEDIUM
Palo Alto Networks PAN-OS - Privilege Escalation
Apr 12, 2023
CVSS 6.5
EPSS 0.02
CVE-2023-0003
MEDIUM
Palo Alto Networks Cortex XSOAR - Info Disclosure
Feb 08, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-0002
MEDIUM
Palo Alto Networks Cortex XDR < - Privilege Escalation
Feb 08, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-0001
MEDIUM
Palo Alto Networks Cortex XDR < - Info Disclosure
Feb 08, 2023
CVSS 6.0
EPSS 0.00
CVE-2022-0031
MEDIUM
Cortex XSOAR - Local Privilege Escalation via Insufficient Verification of Data Authenticity
Nov 09, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-0030
HIGH
PAN-OS 8.1.0-8.1.23 - Authentication Bypass via Web Interface Impersonation
Oct 12, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-0029
MEDIUM
Palo Alto Networks Cortex XDR Agent 5.0-5.0.11/7.5-7.5.100 Local Privilege Escalation
Sep 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-0028
HIGH
KEV
PAN-OS >=8.1.0 <8.1.23 - Reflected and Amplified TCP Denial-of-Service via URL Filtering Policy Misconfiguration
Aug 10, 2022
CVSS 8.6
EPSS 0.05
CVE-2022-0027
MEDIUM
Cortex XSOAR 6.1-6.2, 6.5, < 6.6.0.2585049 - Authenticated Unauthorized Incident Data Access via Email Report Generation
May 11, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-0026
MEDIUM
Cortex XDR Agent - Local Privilege Escalation via File Creation in Windows Root Directory
May 11, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-0025
MEDIUM
Cortex XDR Agent 7.7.0 - Authenticated Local Privilege Escalation via Uncontrolled Search Path
May 11, 2022
CVSS 6.7
EPSS 0.00
Products
Quick Filters