Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / paloaltonetworks

paloaltonetworks

310 tracked vulnerabilities.

CVE-2020-2018 CRITICAL

PAN-OS 7.1.0-7.1.25 - Authentication Bypass via Panorama Context Switching

CVE-2020-2017 HIGH

PAN-OS 7.1.0-7.1.25 - Authenticated DOM-Based Cross-Site Scripting

CVE-2020-2016 HIGH

PAN-OS < 7.1.26, < 8.1.13, < 9.0.6 - Privilege Escalation via Insecure Temporary File Creation

CVE-2020-2015 HIGH

PAN-OS 7.1.0-7.1.25 - Authenticated Buffer Overflow in Management Server

CVE-2020-2014 HIGH

PAN-OS 7.1.0-7.1.25 - Authenticated OS Command Injection

CVE-2020-2013 HIGH

Palo Alto Networks PAN-OS 7.1.0-7.1.25 - Authenticated Cleartext Transmission of Session Cookie

CVE-2020-2012 HIGH

Palo Alto Networks Pan-OS 7.1.0-7.1.25 - Unauthenticated XML External Entity Injection

CVE-2020-2011 HIGH

Palo Alto Networks PAN-OS 7.1.0-7.1.25 - Unauthenticated Denial of Service via Crafted Registration Request

CVE-2020-2010 HIGH

PAN-OS 7.1.0-7.1.25 - Authenticated OS Command Injection

CVE-2020-2009 HIGH

Palo Alto Networks PAN-OS <8.1.14, <9.0.7 - Remote Code Execution

CVE-2020-2008 HIGH

PAN-OS 7.1.0-7.1.25 and 8.0 - Authenticated OS Command Injection and Arbitrary File Deletion

CVE-2020-2007 HIGH

PAN-OS 7.1.0-7.1.25 - Authenticated OS Command Injection

CVE-2020-2006 HIGH

PAN-OS 7.1.0-7.1.25 and 8.0 - Authenticated Stack-based Buffer Overflow

CVE-2020-2005 HIGH

PAN-OS 7.1.0-7.1.25 - Cross-Site Scripting via GlobalProtect Clientless VPN

CVE-2020-2004 MEDIUM

GlobalProtect 5.0.0-5.0.8 and 5.1.0-5.1.1 - Sensitive Information Disclosure in PanGPS.log

CVE-2020-2003 MEDIUM

PAN-OS 7.1.0-7.1.25 - Authenticated Arbitrary File Deletion via Command Processing

CVE-2020-2002 HIGH

PAN-OS 7.1.0-7.1.25 - Authentication Bypass via Kerberos KDC Spoofing

CVE-2020-2001 HIGH

Palo Alto Networks PAN-OS 7.1.0-7.1.25 - Unauthenticated Out-of-bounds Write via XSLT Processing

CVE-2020-1998 MEDIUM

PAN-OS 7.1.0-7.1.25 - Authentication Bypass via SAML Username Sharing

CVE-2020-1997 MEDIUM

PAN-OS 7.1.0-7.1.25 - URL Redirection to Untrusted Site via GlobalProtect Component

CVE-2020-1996 MEDIUM

PAN-OS 7.1.0-7.1.25 - Unauthenticated Log Injection in Management Server

CVE-2020-1995 MEDIUM

PAN-OS 9.1.0-9.1.1 - Authenticated Denial of Service via rasmgr Daemon NULL Pointer Dereference

CVE-2020-1994 MEDIUM

PAN-OS <8.1.13, <9.0.7 - Local Privilege Escalation

CVE-2020-1993 LOW

PAN-OS <8.1.14, <9.0.8 - Session Fixation

CVE-2020-1992 HIGH

PAN-OS 9.0.0-9.0.6 - Use-After-Free in Varrcvr Daemon via WildFire Log Forwarding

Previous Page 8 of 13 Next

Products

pan-os 211 globalprotect 34 cortex_xdr_agent 19 expedition 16 cortex_xsoar 9 prisma_access 7 prisma_cloud 4 expedition_migration_tool 3 secdo 3 terminal_services_agent 3 traps 3 bridgecrew_checkov 2 cortex_xsoar_commonscripts 1 demisto 1 minemeld 1 netconnect 1 twistlock 1 vm-series 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy