paloaltonetworks

348 tracked vulnerabilities.

CVE-2024-3384 HIGH
Palo Alto Networks PAN-OS - NTLM Packet Denial of Service
Apr 10, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-3383 HIGH
Palo Alto Networks PAN-OS - Privilege Escalation
Apr 10, 2024
CVSS 7.4
EPSS 0.01
CVE-2024-3382 HIGH
Palo Alto Networks PAN-OS - Memory Corruption
Apr 10, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-2433 MEDIUM
Palo Alto Networks Panorama - Privilege Escalation
Mar 13, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-2432 MEDIUM
Palo Alto Networks GlobalProtect < - Privilege Escalation
Mar 13, 2024
CVSS 4.5
EPSS 0.00
CVE-2024-2431 MEDIUM
Palo Alto Networks GlobalProtect - Privilege Escalation
Mar 13, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-0011 MEDIUM
PAN-OS 8.1.0-8.1.23 - Reflected Cross-Site Scripting in Captive Portal
Feb 14, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-0010 MEDIUM
Palo Alto Networks PAN-OS 10.1.0-10.1.10 - Reflected Cross-Site Scripting in GlobalProtect Portal
Feb 14, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-0009 MEDIUM
Palo Alto Networks PAN-OS 10.2.0-10.2.3 - Authenticated VPN Connection from Unauthorized IP via GlobalProtect Gateway
Feb 14, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-0008 MEDIUM
PAN-OS >=10.2.0 <10.2.5 - Insufficient Session Expiration
Feb 14, 2024
CVSS 6.6
EPSS 0.01
CVE-2024-0007 MEDIUM
PAN-OS 8.1.0-8.1.23 - Authenticated Stored Cross-Site Scripting via Web Interface
Feb 14, 2024
CVSS 6.8
EPSS 0.00
CVE-2023-6795 MEDIUM
PAN-OS 8.1.0-8.1.23 - Authenticated OS Command Injection
Dec 13, 2023
CVSS 5.5
EPSS 0.01
CVE-2023-6794 MEDIUM
PAN-OS 8.1.0-8.1.25 - Authenticated Arbitrary File Upload
Dec 13, 2023
CVSS 5.5
EPSS 0.01
CVE-2023-6793 LOW
Palo Alto Networks PAN-OS 9.1.0-9.1.16 - Authenticated XML API Key Revocation via Privilege Escalation
Dec 13, 2023
CVSS 2.7
EPSS 0.01
CVE-2023-6792 MEDIUM
PAN-OS 8.1.0-8.1.23 - Authenticated OS Command Injection via XML API
Dec 13, 2023
CVSS 5.5
EPSS 0.01
CVE-2023-6791 MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
Dec 13, 2023
CVSS 4.9
EPSS 0.01
CVE-2023-6790 HIGH
PAN-OS 8.1.0-8.1.24 - DOM-Based Cross-Site Scripting via Crafted Web Interface Link
Dec 13, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-6789 MEDIUM
PAN-OS 8.1.0-8.1.25 - Authenticated Stored Cross-Site Scripting via Web Interface
Dec 13, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-3282 MEDIUM
Cortex XSOAR < 6.10.0 - Local Privilege Escalation via Engine Software
Nov 08, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-3280 MEDIUM
Palo Alto Networks Cortex XDR Agent 5.0-5.0.12.22203 7.9.0-7.9.3 7.9.0-7.9.101 - Local Protection Mechanism Bypass
Sep 13, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-38046 MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
Jul 12, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-0010 MEDIUM
Palo Alto Networks PAN-OS 8.1.0-8.1.23 - Reflected Cross-Site Scripting via Captive Portal
Jun 14, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-0009 HIGH
Paloaltonetworks Palo Alto Networks GlobalProtect - Privilege Escalation
Jun 14, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-0008 MEDIUM
Palo Alto Networks PAN-OS - Info Disclosure
May 10, 2023
CVSS 4.4
EPSS 0.01
CVE-2023-0007 MEDIUM
PAN-OS 8.1.0-8.1.24 - Authenticated Stored Cross-Site Scripting in Web Interface
May 10, 2023
CVSS 6.5
EPSS 0.00