paloaltonetworks

348 tracked vulnerabilities.

CVE-2022-0013 MEDIUM
Cortex XDR Agent 5.0-5.0.11, 6.1-6.1.8, 7.2-7.2.3, 7.3-7.3.1 - Arbitrary File Read via Support File
Jan 12, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-0012 MEDIUM
Cortex XDR Agent Arbitrary File Deletion and DoS via Improper Link Resolution
Jan 12, 2022
CVSS 6.1
EPSS 0.00
CVE-2021-3064 CRITICAL
Palo Alto Networks <8.1.17 - Memory Corruption
Nov 10, 2021
CVSS 9.8
EPSS 0.19
CVE-2021-3063 HIGH
PAN-OS 8.1.0-8.1.20 - Unauthenticated Denial of Service via GlobalProtect Interface
Nov 10, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3062 HIGH
PAN-OS <8.1.20, <9.1.11 - Privilege Escalation
Nov 10, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-3061 MEDIUM
Palo Alto Networks PAN-OS 8.1.0-8.1.19 and Prisma Access - Authenticated OS Command Injection via CLI
Nov 10, 2021
CVSS 6.4
EPSS 0.01
CVE-2021-3060 HIGH
PAN-OS <8.1.20-h1, <9.0.14-h3, <9.1 - Code Injection
Nov 10, 2021
CVSS 8.1
EPSS 0.34
CVE-2021-3059 HIGH
Palo Alto Networks PAN-OS 8.1 < 8.1.20 - OS Command Injection via Dynamic Updates
Nov 10, 2021
CVSS 8.1
EPSS 0.02
CVE-2021-3058 HIGH
PAN-OS 8.1.0-8.1.19 - Authenticated OS Command Injection via XML API
Nov 10, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-3056 HIGH
Palo Alto Networks PAN-OS Authenticated RCE via SAML Authentication
Nov 10, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-3057 HIGH
Palo Alto Networks GlobalProtect <5.1.9-5.2.8 - Buffer Overflow
Oct 13, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-3055 MEDIUM
Palo Alto Networks PAN-OS <8.1 - RCE, DoS
Sep 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-3054 HIGH
PAN-OS Authenticated RCE via Plugin Upload Race Condition
Sep 08, 2021
CVSS 7.2
EPSS 0.01
CVE-2021-3053 HIGH
Palo Alto Networks PAN-OS <8.1.20, <9.0 - DoS
Sep 08, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3052 HIGH
Palo Alto Network PAN-OS <8.1.20, <9.0.14, <9.1.10, <10.0 - XSS
Sep 08, 2021
CVSS 8.0
EPSS 0.01
CVE-2021-3051 HIGH
Cortex XSOAR <5.5.0-6.2.0 - Info Disclosure
Sep 08, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-3049 LOW
Palo Alto Networks Cortex XSOAR <6.1.0 - Privilege Escalation
Sep 08, 2021
CVSS 2.6
EPSS 0.00
CVE-2021-3050 HIGH
Palo Alto Networks PAN-OS <10.1.2 - Command Injection
Aug 11, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-3048 MEDIUM
PAN-OS 9.0.0-9.0.13 - Denial of Service via Invalid External Dynamic List URL
Aug 11, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-3047 MEDIUM
Palo Alto Networks PAN-OS <8.1.19, <9.0.14, <9.1 - Privilege Escala...
Aug 11, 2021
CVSS 4.2
EPSS 0.00
CVE-2021-3046 MEDIUM
Palo Alto Networks PAN-OS 8.1.0-8.1.18 - Authenticated User Impersonation via SAML Authentication
Aug 11, 2021
CVSS 6.8
EPSS 0.01
CVE-2021-3045 MEDIUM
Palo Alto Networks PAN-OS <8.1.19, <9.0.14, <9.1.10 - Command Injec...
Aug 11, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-3043 HIGH
Prisma Cloud Compute 20.12-20.12.551 and 21.04-21.04.438 - Authenticated Reflected Cross-Site Scripting
Jul 15, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3042 HIGH
Palo Alto Networks Cortex XDR <6.1-7.2 - Privilege Escalation
Jul 15, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-3044 CRITICAL
Palo Alto Networks Cortex XSOAR <6.1.0-6.2.0 - Auth Bypass
Jun 22, 2021
CVSS 9.8
EPSS 0.01