paloaltonetworks
348 tracked vulnerabilities.
CVE-2024-3384
HIGH
Palo Alto Networks PAN-OS - NTLM Packet Denial of Service
Apr 10, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-3383
HIGH
Palo Alto Networks PAN-OS - Privilege Escalation
Apr 10, 2024
CVSS 7.4
EPSS 0.01
CVE-2024-3382
HIGH
Palo Alto Networks PAN-OS - Memory Corruption
Apr 10, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-2433
MEDIUM
Palo Alto Networks Panorama - Privilege Escalation
Mar 13, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-2432
MEDIUM
Palo Alto Networks GlobalProtect < - Privilege Escalation
Mar 13, 2024
CVSS 4.5
EPSS 0.00
CVE-2024-2431
MEDIUM
Palo Alto Networks GlobalProtect - Privilege Escalation
Mar 13, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-0011
MEDIUM
PAN-OS 8.1.0-8.1.23 - Reflected Cross-Site Scripting in Captive Portal
Feb 14, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-0010
MEDIUM
Palo Alto Networks PAN-OS 10.1.0-10.1.10 - Reflected Cross-Site Scripting in GlobalProtect Portal
Feb 14, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-0009
MEDIUM
Palo Alto Networks PAN-OS 10.2.0-10.2.3 - Authenticated VPN Connection from Unauthorized IP via GlobalProtect Gateway
Feb 14, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-0008
MEDIUM
PAN-OS >=10.2.0 <10.2.5 - Insufficient Session Expiration
Feb 14, 2024
CVSS 6.6
EPSS 0.01
CVE-2024-0007
MEDIUM
PAN-OS 8.1.0-8.1.23 - Authenticated Stored Cross-Site Scripting via Web Interface
Feb 14, 2024
CVSS 6.8
EPSS 0.00
CVE-2023-6795
MEDIUM
PAN-OS 8.1.0-8.1.23 - Authenticated OS Command Injection
Dec 13, 2023
CVSS 5.5
EPSS 0.01
CVE-2023-6794
MEDIUM
PAN-OS 8.1.0-8.1.25 - Authenticated Arbitrary File Upload
Dec 13, 2023
CVSS 5.5
EPSS 0.01
CVE-2023-6793
LOW
Palo Alto Networks PAN-OS 9.1.0-9.1.16 - Authenticated XML API Key Revocation via Privilege Escalation
Dec 13, 2023
CVSS 2.7
EPSS 0.01
CVE-2023-6792
MEDIUM
PAN-OS 8.1.0-8.1.23 - Authenticated OS Command Injection via XML API
Dec 13, 2023
CVSS 5.5
EPSS 0.01
CVE-2023-6791
MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
Dec 13, 2023
CVSS 4.9
EPSS 0.01
CVE-2023-6790
HIGH
PAN-OS 8.1.0-8.1.24 - DOM-Based Cross-Site Scripting via Crafted Web Interface Link
Dec 13, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-6789
MEDIUM
PAN-OS 8.1.0-8.1.25 - Authenticated Stored Cross-Site Scripting via Web Interface
Dec 13, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-3282
MEDIUM
Cortex XSOAR < 6.10.0 - Local Privilege Escalation via Engine Software
Nov 08, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-3280
MEDIUM
Palo Alto Networks Cortex XDR Agent 5.0-5.0.12.22203 7.9.0-7.9.3 7.9.0-7.9.101 - Local Protection Mechanism Bypass
Sep 13, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-38046
MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
Jul 12, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-0010
MEDIUM
Palo Alto Networks PAN-OS 8.1.0-8.1.23 - Reflected Cross-Site Scripting via Captive Portal
Jun 14, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-0009
HIGH
Paloaltonetworks Palo Alto Networks GlobalProtect - Privilege Escalation
Jun 14, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-0008
MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
May 10, 2023
CVSS 4.4
EPSS 0.01
CVE-2023-0007
MEDIUM
PAN-OS 8.1.0-8.1.24 - Authenticated Stored Cross-Site Scripting in Web Interface
May 10, 2023
CVSS 6.5
EPSS 0.00
Products
pan-os 226
globalprotect 35
cortex_xdr_agent 20
expedition 16
cortex_xsoar 11
prisma_access 8
prisma_cloud 4
expedition_migration_tool 3
idira_endpoint_privilege_manager 3
secdo 3
terminal_services_agent 3
traps 3
bridgecrew_checkov 2
prisma_access_agent 2
trust_protection_foundation 2
autonomous_digital_experience_manager 1
broker_vm 1
chronosphere_collector 1
cloud_ngfw 1
cortex_xsiam 1
cortex_xsiam_commvaultsecurityiq_marketplace 1
cortex_xsoar_commonscripts 1
cortex_xsoar_commvaultsecurityiq_marketplace 1
demisto 1
idira_identity_browser_extension 1
idira_privilege_cloud_connector 1
idira_privileged_access_manager_vault 1
idira_privileged_session_manager 1
idira_privileged_session_manager_for_ssh 1
idira_secrets_manager 1
Quick Filters