paloaltonetworks

CVE-2020-2050 HIGH

PAN-OS 8.1.0-8.1.16 - Unauthenticated Authentication Bypass in GlobalProtect SSL VPN

Nov 12, 2020

CVSS 8.2

EPSS 0.00

CVE-2020-2048 LOW

PAN-OS 8.1.0-8.1.16 - Sensitive Information Exposure in Log Files

Nov 12, 2020

CVSS 3.3

EPSS 0.00

CVE-2020-2022 HIGH

Palo Alto Networks PAN-OS 8.1 < 8.1.17 - Privilege Escalation via Context Switch Token Exposure

Nov 12, 2020

CVSS 7.5

EPSS 0.01

CVE-2020-2000 HIGH

PAN-OS 8.1.0-8.1.15 - Authenticated OS Command Injection and Memory Corruption

Nov 12, 2020

CVSS 7.2

EPSS 0.02

CVE-2020-1999 MEDIUM

PAN-OS 7.1.0-7.1.25 - Threat Detection Evasion via Crafted TCP Packets

Nov 12, 2020

CVSS 5.3

EPSS 0.00

CVE-2020-2044 LOW

PAN-OS 8.0.0-8.0.19 - Sensitive Information Exposure in opcmdhistory.log

Sep 09, 2020

CVSS 3.3

EPSS 0.00

CVE-2020-2043 LOW

PAN-OS 8.1.0-8.1.15 - Sensitive Information Exposure in Configuration Logs

Sep 09, 2020

CVSS 3.3

EPSS 0.00

CVE-2020-2042 HIGH

PAN-OS 10.0.0 - Authenticated Stack-based Buffer Overflow

Sep 09, 2020

CVSS 7.2

EPSS 0.01

CVE-2020-2041 HIGH

PAN-OS 8.0.0-8.0.19 and <8.1.16 - Unauthenticated Denial of Service via appweb Daemon

Sep 09, 2020

CVSS 7.5

EPSS 0.01

CVE-2020-2040 CRITICAL

PAN-OS 8.0-8.0.19 - Unauthenticated Buffer Overflow via Captive Portal or MFA Interface

Sep 09, 2020

CVSS 9.8

EPSS 0.04

CVE-2020-2039 MEDIUM

PAN-OS 8.1.0-8.1.15 - Unauthenticated Denial of Service via Management Web Interface File Upload

Sep 09, 2020

CVSS 5.3

EPSS 0.11

CVE-2020-2038 HIGH

Palo Alto Networks Authenticated Remote Code Execution

Sep 09, 2020

CVSS 7.2

EPSS 0.87

CVE-2020-2037 HIGH

PAN-OS 8.1.0-8.1.15 - Authenticated OS Command Injection

Sep 09, 2020

CVSS 7.2

EPSS 0.01

CVE-2020-2036 HIGH NUCLEI

PAN-OS 8.1.0-8.1.15 - Reflected Cross-Site Scripting in Management Web Interface

Sep 09, 2020

CVSS 8.8

EPSS 0.78

CVE-2020-2035 LOW

PAN-OS - Security Policy Bypass via SNI Field in TLS Client Hello

Aug 12, 2020

CVSS 3.0

EPSS 0.00

CVE-2020-2034 HIGH

PAN-OS 7.1.0-7.1.25 - Unauthenticated OS Command Injection via GlobalProtect Portal

Jul 08, 2020

CVSS 8.1

EPSS 0.78

CVE-2020-2031 MEDIUM

PAN-OS 9.1.0-9.1.2 - Authenticated Denial of Service via dnsproxyd Integer Underflow

Jul 08, 2020

CVSS 4.9

EPSS 0.00

CVE-2020-2030 HIGH

PAN-OS 7.1.0-7.1.25 and 8.0.x-8.1.14 - Authenticated OS Command Injection

Jul 08, 2020

CVSS 7.2

EPSS 0.03

CVE-2020-1982 MEDIUM

PAN-OS 8.0-8.0.19 - Inadequate Encryption Strength via TLS 1.0

Jul 08, 2020

CVSS 4.8

EPSS 0.00

CVE-2020-2021 CRITICAL KEV

PAN-OS 8.0.x < 8.0.20 - Unauthenticated SAML Authentication Bypass via Improper Signature Verification

Jun 29, 2020

CVSS 10.0

EPSS 0.19

CVE-2020-2033 MEDIUM

GlobalProtect 5.0.0-5.0.9 - Authentication Bypass via ARP Spoofing

Jun 10, 2020

CVSS 5.3

EPSS 0.00

CVE-2020-2032 HIGH

Palo Alto Networks GlobalProtect < 5.0.10 - Privilege Escalation via Race Condition During Upgrade

Jun 10, 2020

CVSS 7.0

EPSS 0.00

CVE-2020-2029 HIGH

PAN-OS 7.1.0-7.1.25 - Authenticated OS Command Injection via Certificate Generation Request

Jun 10, 2020

CVSS 7.2

EPSS 0.01

CVE-2020-2028 HIGH

PAN-OS 7.1.0-7.1.25 and 8.0 - Authenticated OS Command Injection via Certificate Upload in FIPS-CC Mode

Jun 10, 2020

CVSS 7.2

EPSS 0.01

CVE-2020-2027 HIGH

PAN-OS 7.1.0-7.1.25 and 8.0 - Authenticated Stack-based Buffer Overflow in authd

Jun 10, 2020

CVSS 7.2

EPSS 0.02