cbcvebase.

Palo Alto Networks PAN-OS vulnerabilities

170 known vulnerabilities affecting palo_alto_networks/pan-os.

Total CVEs
170
CISA KEV
10
actively exploited
Public exploits
9
Exploited in wild
11
Severity breakdown
CRITICAL14HIGH70MEDIUM73LOW13

Vulnerabilities

Page 2 of 9
CVE-2020-2001P2CRITICALCVSS 9.8v8.0.*v7.1.*+2 more2020-05-13
CVE-2020-2001 [CRITICAL] CWE-123 CVE-2020-2001: An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT pr An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT processing logic that allows an unauthenticated user with network access to PAN-OS management interface to write attacker supplied file on the system and elevate privileges. This issue affects: All PAN-OS 7.1 Panorama and 8.0 Panorama versions; PAN-OS 8
nvd
CVE-2021-3050P2HIGHCVSS 8.8≥ 9.0.10, < 9.0*≥ 9.1.4, < 9.1*+2 more2021-08-11
CVE-2021-3050 [HIGH] CWE-78 CVE-2021-3050: An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an auth An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 9.0 version 9.0.10 through PAN-OS 9.0.14; PAN-OS 9.1 version 9.1.4 through PAN-OS 9.1.10; PAN-OS 10.0 version 10.0.7 and earlier PAN-OS 10.0 version
nvd
CVE-2020-1992P3CRITICALCVSS 9.8≥ 9.0, < 9.0.7≥ 9.1, < 9.1.22020-04-08
CVE-2020-1992 [CRITICAL] CWE-134 CVE-2020-1992: A format string vulnerability in the Varrcvr daemon of PAN-OS on PA-7000 Series devices with a Log F A format string vulnerability in the Varrcvr daemon of PAN-OS on PA-7000 Series devices with a Log Forwarding Card (LFC) allows remote attackers to crash the daemon creating a denial of service condition or potentially execute code with root privileges. This issue affects Palo Alto Networks PAN-OS 9.0 versions before 9.0.7; PAN-OS 9.1 versions befor
nvd
CVE-2020-2014P3HIGHCVSS 8.8v8.0.*v7.1.*+2 more2020-05-13
CVE-2020-2014 [HIGH] CWE-78 CVE-2020-2014: An OS Command Injection vulnerability in PAN-OS management server allows authenticated users to inje An OS Command Injection vulnerability in PAN-OS management server allows authenticated users to inject and execute arbitrary shell commands with root privileges. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7.
nvd
CVE-2020-2015P3HIGHCVSS 8.8v8.0.*≥ 9.0, < 9.0.7+3 more2020-05-13
CVE-2020-2015 [HIGH] CWE-120 CVE-2020-2015: A buffer overflow vulnerability in the PAN-OS management server allows authenticated users to crash A buffer overflow vulnerability in the PAN-OS management server allows authenticated users to crash system processes or potentially execute arbitrary code with root privileges. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions earlier than 9.0.7; PAN-OS 9.1 versions earlier than 9.1.
nvd
CVE-2021-3056P3HIGHCVSS 8.8≥ 9.0, < 9.0.14≥ 8.1, < 8.1.20+2 more2021-11-10
CVE-2021-3056 [HIGH] CWE-120 CVE-2021-3056: A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN enables A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN enables an authenticated attacker to execute arbitrary code with root user privileges during SAML authentication. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20; PAN-OS 9.0 versions earlier than PAN-OS 9.0.14; PAN-OS 9.1 versions earlier than P
nvd
CVE-2020-2006P3HIGHCVSS 8.8v7.1.*v8.0.*+1 more2020-05-13
CVE-2020-2006 [HIGH] CWE-121 CVE-2020-2006: A stack-based buffer overflow vulnerability in the management server component of PAN-OS that allows A stack-based buffer overflow vulnerability in the management server component of PAN-OS that allows an authenticated user to potentially execute arbitrary code with root privileges. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14.
nvd
CVE-2026-0265P3HIGHCVSS 7.2≥ 12.1.0, < 12.1.7, 12.1.4-h5≥ 11.2.0, < 11.2.12, 11.2.10-h6, 11.2.7-h13, 11.2.4-h17+2 more2026-05-13
CVE-2026-0265 [HIGH] CWE-347 CVE-2026-0265: An authentication bypass vulnerability in Palo Alto Networks PAN-OS® software enables an unauthentic An authentication bypass vulnerability in Palo Alto Networks PAN-OS® software enables an unauthenticated attacker with network access to bypass authentication controls when Cloud Authentication Service (CAS) is enabled. The risk is higher if CAS is enabled on the management interface and lower when any other login interfaces are used. The risk of thi
nvd
CVE-2020-2039P3MEDIUMCVSS 5.3≥ 9.1, < 9.1.4≥ 8.1, < 8.1.16+2 more2020-09-09
CVE-2020-2039 [MEDIUM] CWE-400 CVE-2020-2039: An uncontrolled resource consumption vulnerability in Palo Alto Networks PAN-OS allows for a remote An uncontrolled resource consumption vulnerability in Palo Alto Networks PAN-OS allows for a remote unauthenticated user to upload temporary files through the management web interface that are not properly deleted after the request is finished. It is possible for an attacker to disrupt the availability of the management web interface by repeatedly uplo
nvd
CVE-2020-1998P3HIGHCVSS 8.8v8.0.*≥ 8.1, < 8.1.13+3 more2020-05-13
CVE-2020-1998 [HIGH] CWE-285 CVE-2020-1998: An improper authorization vulnerability in PAN-OS that mistakenly uses the permissions of local linu An improper authorization vulnerability in PAN-OS that mistakenly uses the permissions of local linux users instead of the intended SAML permissions of the account when the username is shared for the purposes of SSO authentication. This can result in authentication bypass and unintended resource access for the user. This issue affects: PAN-OS 7.1 versio
nvd
CVE-2025-0128P3HIGHCVSS 8.7≥ 11.2.0, < 11.2.3≥ 11.1.0, < 11.1.5+3 more2025-04-11
CVE-2025-0128 [HIGH] CWE-754 CVE-2025-0128: A denial-of-service (DoS) vulnerability in the Simple Certificate Enrollment Protocol (SCEP) authent A denial-of-service (DoS) vulnerability in the Simple Certificate Enrollment Protocol (SCEP) authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. Cloud NGFW is
nvd
CVE-2020-1975P3HIGHCVSS 8.8≥ 8.1, < 8.1.12≥ 9.0, < 9.0.62020-02-12
CVE-2020-1975 [HIGH] CWE-112 CVE-2020-1975: Missing XML validation vulnerability in the PAN-OS web interface on Palo Alto Networks PAN-OS softwa Missing XML validation vulnerability in the PAN-OS web interface on Palo Alto Networks PAN-OS software allows authenticated users to inject arbitrary XML that results in privilege escalation. This issue affects PAN-OS 8.1 versions earlier than PAN-OS 8.1.12 and PAN-OS 9.0 versions earlier than PAN-OS 9.0.6. This issue does not affect PAN-OS 7.1, PAN-OS
nvd
CVE-2021-3062P3HIGHCVSS 8.8≥ 9.1, < 9.1.11≥ 8.1, < 8.1.20+2 more2021-11-10
CVE-2021-3062 [HIGH] CWE-284 CVE-2021-3062: An improper access control vulnerability in PAN-OS software enables an attacker with authenticated a An improper access control vulnerability in PAN-OS software enables an attacker with authenticated access to GlobalProtect portals and gateways to connect to the EC2 instance metadata endpoint for VM-Series firewalls hosted on Amazon AWS. Exploitation of this vulnerability enables an attacker to perform any operations allowed by the EC2 role in AWS. Thi
nvd
CVE-2026-0264P3HIGHCVSS 7.2≥ 12.1.0, < 12.1.7, 12.1.4-h5≥ 11.2.0, < 11.2.12, 11.2.10-h6, 11.2.7-h13, 11.2.4-h17+2 more2026-05-13
CVE-2026-0264 [HIGH] CWE-122 CVE-2026-0264: A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-O A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS® Software allows an unauthenticated attacker with network access to cause a denial of service (DoS) condition (all PAN-OS platforms except Cloud NGFW and Prisma Access) or potentially execute arbitrary code by sending specially crafted network traffic (
nvd
CVE-2024-9472P3HIGHCVSS 8.7≥ 11.2.2, < 11.2.2-h3≥ 11.1.2-h9, < 11.1.2-h14+1 more2024-11-14
CVE-2024-9472 [HIGH] CWE-476 CVE-2024-9472: A null pointer dereference in Palo Alto Networks PAN-OS software on PA-800 Series, PA-3200 Series, P A null pointer dereference in Palo Alto Networks PAN-OS software on PA-800 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series hardware platforms when Decryption policy is enabled allows an unauthenticated attacker to crash PAN-OS by sending specific traffic through the data plane, resulting in a denial of service (DoS) condition. Repeated attemp
nvd
CVE-2021-3059P3HIGHCVSS 8.1≥ 10.0, < 10.0.8≥ 10.1, < 10.1.3+3 more2021-11-10
CVE-2021-3059 [HIGH] CWE-78 CVE-2021-3059: An OS command injection vulnerability in the Palo Alto Networks PAN-OS management interface exists w An OS command injection vulnerability in the Palo Alto Networks PAN-OS management interface exists when performing dynamic updates. This vulnerability enables a man-in-the-middle attacker to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20-h1; PAN-OS 9.0 versions earlier than PAN-OS
nvd
CVE-2020-2050P3HIGHCVSS 8.2≥ 8.1, < 8.1.17≥ 9.0, < 9.0.11+2 more2020-11-12
CVE-2020-2050 [HIGH] CWE-285 CVE-2020-2050: An authentication bypass vulnerability exists in the GlobalProtect SSL VPN component of Palo Alto Ne An authentication bypass vulnerability exists in the GlobalProtect SSL VPN component of Palo Alto Networks PAN-OS software that allows an attacker to bypass all client certificate checks with an invalid certificate. A remote attacker can successfully authenticate as any user and gain access to restricted VPN network resources when the gateway or portal
nvd
CVE-2022-0030P3HIGHCVSS 8.1≥ 8.1, < 8.1.242022-10-12
CVE-2022-0030 [HIGH] CWE-290 CVE-2022-0030: An authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface allows a n An authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface allows a network-based attacker with specific knowledge of the target firewall or Panorama appliance to impersonate an existing PAN-OS administrator and perform privileged actions.
nvd
CVE-2020-2012P3HIGHCVSS 7.5v8.0.*v7.1.*+2 more2020-05-13
CVE-2020-2012 [HIGH] CWE-611 CVE-2020-2012: Improper restriction of XML external entity reference ('XXE') vulnerability in Palo Alto Networks Pa Improper restriction of XML external entity reference ('XXE') vulnerability in Palo Alto Networks Panorama management service allows remote unauthenticated attackers with network access to the Panorama management interface to read arbitrary files on the system. This issue affects: All versions of PAN-OS for Panorama 7.1 and 8.0; PAN-OS for Panorama 8.1
nvd
CVE-2025-4615P3HIGHCVSS 7.2≥ 11.2.0, < 11.2.8≥ 11.1.0, < 11.1.4-h27+1 more2025-10-09
CVE-2025-4615 [HIGH] CWE-83 CVE-2025-4615: An improper input neutralization vulnerability in the management web interface of the Palo Alto Netw An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators.
nvd
Palo Alto Networks PAN-OS vulnerabilities | cvebase