CVE-2014-3764
PAN-OS < 5.0.15, 5.1.x < 5.1.10, 6.0.x < 6.0.6 - Cross-Site Scripting
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in the web-based device management interface in Palo Alto Networks PAN-OS before 5.0.15, 5.1.x before 5.1.10, and 6.0.x before 6.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Ref ID 64563.
References (2)
Core 2
Core References
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61811
Various Sources x_refsource_confirm
https://security.paloaltonetworks.com/CVE-2014-3764
Scores
EPSS
0.0024
EPSS Percentile
47.7%
Details
CWE
CWE-79
Status
published
Products (17)
paloaltonetworks/pan-os
5.1
paloaltonetworks/pan-os
5.1.1
paloaltonetworks/pan-os
5.1.2
paloaltonetworks/pan-os
5.1.3
paloaltonetworks/pan-os
5.1.4
paloaltonetworks/pan-os
5.1.5
paloaltonetworks/pan-os
5.1.6
paloaltonetworks/pan-os
5.1.7
paloaltonetworks/pan-os
5.1.8
paloaltonetworks/pan-os
5.1.9
... and 7 more
Published
Jan 06, 2015
Tracked Since
Feb 18, 2026