Palo Alto Networks PAN-OS vulnerabilities
170 known vulnerabilities affecting palo_alto_networks/pan-os.
Total CVEs
170
CISA KEV
10
actively exploited
Public exploits
9
Exploited in wild
11
Severity breakdown
CRITICAL14HIGH70MEDIUM73LOW13
Vulnerabilities
Page 4 of 9
CVE-2022-0024P3HIGHCVSS 7.2≥ 9.1, < 9.1.13≥ 10.1, < 10.1.5+3 more2022-05-11
CVE-2022-0024 [HIGH] CWE-138 CVE-2022-0024: A vulnerability exists in Palo Alto Networks PAN-OS software that enables an authenticated network-b
A vulnerability exists in Palo Alto Networks PAN-OS software that enables an authenticated network-based PAN-OS administrator to upload a specifically created configuration that disrupts system processes and potentially execute arbitrary code with root privileges when the configuration is committed on both hardware and virtual firewalls. This issue does
nvd
CVE-2025-0130P3HIGHCVSS 7.5≥ 11.2.0, < 11.2.5≥ 11.1.0, < 11.1.6-h12025-05-14
CVE-2025-0130 [HIGH] CWE-754 CVE-2025-0130: A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled
A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this condition will cause the firewall to enter maintenance mod
nvd
CVE-2025-0126P3HIGHCVSS 8.3≥ 11.2.0, < 11.2.3≥ 11.1.0, < 11.1.5+3 more2025-04-11
CVE-2025-0126 [HIGH] CWE-384 CVE-2025-0126: When configured using SAML, a session fixation vulnerability in the GlobalProtect™ login enables an
When configured using SAML, a session fixation vulnerability in the GlobalProtect™ login enables an attacker to impersonate a legitimate authorized user and perform actions as that GlobalProtect user. This requires the legitimate user to first click on a malicious link provided by the attacker.
The SAML login for the PAN-OS® management interface is not
nvd
CVE-2020-2041P3HIGHCVSS 7.5v8.0.*≥ 8.1, < 8.1.162020-09-09
CVE-2020-2041 [HIGH] CWE-16 CVE-2020-2041: An insecure configuration of the appweb daemon of Palo Alto Networks PAN-OS 8.1 allows a remote unau
An insecure configuration of the appweb daemon of Palo Alto Networks PAN-OS 8.1 allows a remote unauthenticated user to send a specifically crafted request to the device that causes the appweb service to crash. Repeated attempts to send this request result in denial of service to all PAN-OS services by restarting the device and putting it into maintenanc
nvd
CVE-2020-2042P3HIGHCVSS 7.2≥ 10.0, < 10.0.12020-09-09
CVE-2020-2042 [HIGH] CWE-121 CVE-2020-2042: A buffer overflow vulnerability in the PAN-OS management web interface allows authenticated administ
A buffer overflow vulnerability in the PAN-OS management web interface allows authenticated administrators to disrupt system processes and potentially execute arbitrary code with root privileges. This issue impacts only PAN-OS 10.0 versions earlier than PAN-OS 10.0.1.
nvd
CVE-2020-1990P3HIGHCVSS 7.2≥ 8.1, < 8.1.13≥ 9.0, < 9.0.72020-04-08
CVE-2020-1990 [HIGH] CWE-121 CVE-2020-1990: A stack-based buffer overflow vulnerability in the management server component of PAN-OS allows an a
A stack-based buffer overflow vulnerability in the management server component of PAN-OS allows an authenticated user to upload a corrupted PAN-OS configuration and potentially execute code with root privileges. This issue affects Palo Alto Networks PAN-OS 8.1 versions before 8.1.13; 9.0 versions before 9.0.7. This issue does not affect PAN-OS 7.1.
nvd
CVE-2026-0227P3HIGHCVSS 7.5≥ 12.1.2, < 12.1.4, 12.1.3-h3≥ 11.2.0, < 11.2.10-h2, 11.2.7-h8, 11.2.4-h15+3 more2026-01-15
CVE-2026-0227 [HIGH] CWE-754 CVE-2026-0227: A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a
A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (DoS) to the firewall. Repeated attempts to trigger this issue results in the firewall entering into maintenance mode.
nvd
CVE-2023-6792P3MEDIUMCVSS 6.3≥ 8.1, < 8.1.24≥ 9.0, < 9.0.17+3 more2023-12-13
CVE-2023-6792 [MEDIUM] CWE-88 CVE-2023-6792: An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables a
An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.
nvd
CVE-2026-0273P3MEDIUMCVSS 6.1≥ 12.1.0, < 12.1.4-h7≥ 11.2.0, < 11.2.4-h18+2 more2026-06-10
CVE-2026-0273 [MEDIUM] CWE-78 CVE-2026-0273: A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated ad
A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI.
The security risk posed by this issue is significantly minimized when CLI acces
nvd
CVE-2025-0114P3HIGHCVSS 7.5≥ 11.0.0, < 11.0.2≥ 10.2.0, < 10.2.5+1 more2025-03-12
CVE-2025-0114 [HIGH] CWE-400 CVE-2025-0114: A Denial of Service (DoS) vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS so
A Denial of Service (DoS) vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software enables an unauthenticated attacker to render the service unavailable by sending a large number of specially crafted packets over a period of time. This issue affects both the GlobalProtect portal and the GlobalProtect gateway.
This issue does not
nvd
CVE-2026-0229P3MEDIUMCVSS 6.6≥ 12.1.0, < 12.1.4≥ 11.2.0, < 11.2.102026-02-11
CVE-2026-0229 [MEDIUM] CWE-754 CVE-2026-0229: A denial-of-service (DoS) vulnerability in the Advanced DNS Security (ADNS) feature of Palo Alto Net
A denial-of-service (DoS) vulnerability in the Advanced DNS Security (ADNS) feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode.
Cloud NGFW and Prisma Access® are not impact
nvd
CVE-2025-4619P3MEDIUMCVSS 6.6≥ 11.2.0, < 11.2.5≥ 11.1.0, < 11.1.7+1 more2025-11-13
CVE-2025-4619 [MEDIUM] CWE-754 CVE-2025-4619: A denial-of-service (DoS) vulnerability in Palo Alto Networks PAN-OS software enables an unauthentic
A denial-of-service (DoS) vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to reboot a firewall by sending a specially crafted packet through the dataplane. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode.
This issue is applicable to the PAN-OS software versions listed below
nvd
CVE-2026-0261P3MEDIUMCVSS 6.1≥ 12.1.0, < 12.1.7, 12.1.4-h5≥ 11.2.0, < 11.2.12, 11.2.10-h6, 11.2.7-h13, 11.2.4-h17+2 more2026-05-13
CVE-2026-0261 [MEDIUM] CWE-78 CVE-2026-0261: Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenti
Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI.
The security risk posed by this issue is significantly minimized when
nvd
CVE-2020-2011P3HIGHCVSS 7.5v7.1.*v8.0.*+3 more2020-05-13
CVE-2020-2011 [HIGH] CWE-20 CVE-2020-2011: An improper input validation vulnerability in the configuration daemon of Palo Alto Networks PAN-OS
An improper input validation vulnerability in the configuration daemon of Palo Alto Networks PAN-OS Panorama allows for a remote unauthenticated user to send a specifically crafted registration request to the device that causes the configuration service to crash. Repeated attempts to send this request result in denial of service to all PAN-OS Panorama ser
nvd
CVE-2020-1979P3HIGHCVSS 7.8≥ 8.1, < 8.1.132020-03-11
CVE-2020-1979 [HIGH] CWE-134 CVE-2020-1979: A format string vulnerability in the PAN-OS log daemon (logd) on Panorama allows a network based att
A format string vulnerability in the PAN-OS log daemon (logd) on Panorama allows a network based attacker with knowledge of registered firewall devices and access to Panorama management interfaces to execute arbitrary code, bypassing the restricted shell and escalating privileges. This issue affects only PAN-OS 8.1 versions earlier than PAN-OS 8.1.13 on
nvd
CVE-2024-2550P3HIGHCVSS 7.5≥ 11.1.0, < 11.1.5≥ 11.0.0, < 11.0.6+1 more2024-11-14
CVE-2024-2550 [HIGH] CWE-476 CVE-2024-2550: A null pointer dereference vulnerability in the GlobalProtect gateway in Palo Alto Networks PAN-OS s
A null pointer dereference vulnerability in the GlobalProtect gateway in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to stop the GlobalProtect service on the firewall by sending a specially crafted packet that causes a denial of service (DoS) condition. Repeated attempts to trigger this condition result in the firewall enterin
nvd
CVE-2024-9468P3HIGHCVSS 7.5≥ 11.1.0, < 11.1.3≥ 11.0.0, < 11.0.4-h5+1 more2024-10-09
CVE-2024-9468 [HIGH] CWE-787 CVE-2024-9468: A memory corruption vulnerability in Palo Alto Networks PAN-OS software allows an unauthenticated at
A memory corruption vulnerability in Palo Alto Networks PAN-OS software allows an unauthenticated attacker to crash PAN-OS due to a crafted packet through the data plane, resulting in a denial of service (DoS) condition. Repeated attempts to trigger this condition will result in PAN-OS entering maintenance mode.
nvd
CVE-2025-0109P3MEDIUMCVSS 6.9≥ 10.1.0, < 10.1.14-h9≥ 10.2.0, < 10.2.7-h24+2 more2025-02-12
CVE-2025-0109 [MEDIUM] CWE-73 CVE-2025-0109: An unauthenticated file deletion vulnerability in the Palo Alto Networks PAN-OS management web inter
An unauthenticated file deletion vulnerability in the Palo Alto Networks PAN-OS management web interface enables an unauthenticated attacker with network access to the management web interface to delete certain files as the “nobody” user; this includes limited logs and configuration files but does not include system files.
You can greatly reduce the
nvd
CVE-2024-5919P3MEDIUMCVSS 6.5≥ 11.0.0, < 11.0.2≥ 10.2.0, < 10.2.5+1 more2024-11-14
CVE-2024-5919 [MEDIUM] CWE-611 CVE-2024-5919: A blind XML External Entities (XXE) injection vulnerability in the Palo Alto Networks PAN-OS softwar
A blind XML External Entities (XXE) injection vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker to exfiltrate arbitrary files from firewalls to an attacker controlled server. This attack requires network access to the firewall management interface.
nvd
CVE-2019-17437P3HIGHCVSS 7.8≥ 7.1, < 7.1.25≥ 8.0, < 8.0.20+2 more2019-12-05
CVE-2019-17437 [HIGH] CWE-280 CVE-2019-17437: An improper authentication check in Palo Alto Networks PAN-OS may allow an authenticated low privile
An improper authentication check in Palo Alto Networks PAN-OS may allow an authenticated low privileged non-superuser custom role user to elevate privileges and become superuser. This issue affects PAN-OS 7.1 versions prior to 7.1.25; 8.0 versions prior to 8.0.20; 8.1 versions prior to 8.1.11; 9.0 versions prior to 9.0.5. PAN-OS version 7.0 and prior
nvd