paloaltonetworks
348 tracked vulnerabilities.
CVE-2022-0013
MEDIUM
Cortex XDR Agent 5.0-5.0.11, 6.1-6.1.8, 7.2-7.2.3, 7.3-7.3.1 - Arbitrary File Read via Support File
Jan 12, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-0012
MEDIUM
Cortex XDR Agent Arbitrary File Deletion and DoS via Improper Link Resolution
Jan 12, 2022
CVSS 6.1
EPSS 0.00
CVE-2021-3064
CRITICAL
Palo Alto Networks <8.1.17 - Memory Corruption
Nov 10, 2021
CVSS 9.8
EPSS 0.19
CVE-2021-3063
HIGH
PAN-OS 8.1.0-8.1.20 - Unauthenticated Denial of Service via GlobalProtect Interface
Nov 10, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3062
HIGH
PAN-OS <8.1.20, <9.1.11 - Privilege Escalation
Nov 10, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-3061
MEDIUM
Palo Alto Networks PAN-OS 8.1.0-8.1.19 and Prisma Access - Authenticated OS Command Injection via CLI
Nov 10, 2021
CVSS 6.4
EPSS 0.01
CVE-2021-3060
HIGH
PAN-OS <8.1.20-h1, <9.0.14-h3, <9.1 - Code Injection
Nov 10, 2021
CVSS 8.1
EPSS 0.34
CVE-2021-3059
HIGH
Palo Alto Networks PAN-OS 8.1 < 8.1.20 - OS Command Injection via Dynamic Updates
Nov 10, 2021
CVSS 8.1
EPSS 0.02
CVE-2021-3058
HIGH
PAN-OS 8.1.0-8.1.19 - Authenticated OS Command Injection via XML API
Nov 10, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-3056
HIGH
Palo Alto Networks PAN-OS Authenticated RCE via SAML Authentication
Nov 10, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-3057
HIGH
Palo Alto Networks GlobalProtect <5.1.9-5.2.8 - Buffer Overflow
Oct 13, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-3055
MEDIUM
Palo Alto Networks PAN-OS <8.1 - RCE, DoS
Sep 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-3054
HIGH
PAN-OS Authenticated RCE via Plugin Upload Race Condition
Sep 08, 2021
CVSS 7.2
EPSS 0.01
CVE-2021-3053
HIGH
Palo Alto Networks PAN-OS <8.1.20, <9.0 - DoS
Sep 08, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3052
HIGH
Palo Alto Network PAN-OS <8.1.20, <9.0.14, <9.1.10, <10.0 - XSS
Sep 08, 2021
CVSS 8.0
EPSS 0.01
CVE-2021-3051
HIGH
Cortex XSOAR <5.5.0-6.2.0 - Info Disclosure
Sep 08, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-3049
LOW
Palo Alto Networks Cortex XSOAR <6.1.0 - Privilege Escalation
Sep 08, 2021
CVSS 2.6
EPSS 0.00
CVE-2021-3050
HIGH
Palo Alto Networks PAN-OS <10.1.2 - Command Injection
Aug 11, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-3048
MEDIUM
PAN-OS 9.0.0-9.0.13 - Denial of Service via Invalid External Dynamic List URL
Aug 11, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-3047
MEDIUM
Palo Alto Networks PAN-OS <8.1.19, <9.0.14, <9.1 - Privilege Escala...
Aug 11, 2021
CVSS 4.2
EPSS 0.00
CVE-2021-3046
MEDIUM
Palo Alto Networks PAN-OS 8.1.0-8.1.18 - Authenticated User Impersonation via SAML Authentication
Aug 11, 2021
CVSS 6.8
EPSS 0.01
CVE-2021-3045
MEDIUM
Palo Alto Networks PAN-OS <8.1.19, <9.0.14, <9.1.10 - Command Injec...
Aug 11, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-3043
HIGH
Prisma Cloud Compute 20.12-20.12.551 and 21.04-21.04.438 - Authenticated Reflected Cross-Site Scripting
Jul 15, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3042
HIGH
Palo Alto Networks Cortex XDR <6.1-7.2 - Privilege Escalation
Jul 15, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-3044
CRITICAL
Palo Alto Networks Cortex XSOAR <6.1.0-6.2.0 - Auth Bypass
Jun 22, 2021
CVSS 9.8
EPSS 0.01
Products
pan-os 226
globalprotect 35
cortex_xdr_agent 20
expedition 16
cortex_xsoar 11
prisma_access 8
prisma_cloud 4
expedition_migration_tool 3
idira_endpoint_privilege_manager 3
secdo 3
terminal_services_agent 3
traps 3
bridgecrew_checkov 2
prisma_access_agent 2
trust_protection_foundation 2
autonomous_digital_experience_manager 1
broker_vm 1
chronosphere_collector 1
cloud_ngfw 1
cortex_xsiam 1
cortex_xsiam_commvaultsecurityiq_marketplace 1
cortex_xsoar_commonscripts 1
cortex_xsoar_commvaultsecurityiq_marketplace 1
demisto 1
idira_identity_browser_extension 1
idira_privilege_cloud_connector 1
idira_privileged_access_manager_vault 1
idira_privileged_session_manager 1
idira_privileged_session_manager_for_ssh 1
idira_secrets_manager 1
Quick Filters