cbcvebase.

Palo Alto Networks PAN-OS vulnerabilities

170 known vulnerabilities affecting palo_alto_networks/pan-os.

Total CVEs
170
CISA KEV
10
actively exploited
Public exploits
9
Exploited in wild
11
Severity breakdown
CRITICAL14HIGH70MEDIUM73LOW13

Vulnerabilities

Page 5 of 9
CVE-2021-3053P3HIGHCVSS 7.5≥ 8.1, < 8.1.20≥ 9.0, < 9.0.14+2 more2021-09-08
CVE-2021-3053 [HIGH] CWE-755 CVE-2021-3053: An improper handling of exceptional conditions vulnerability exists in the Palo Alto Networks PAN-OS An improper handling of exceptional conditions vulnerability exists in the Palo Alto Networks PAN-OS dataplane that enables an unauthenticated network-based attacker to send specifically crafted traffic through the firewall that causes the service to crash. Repeated attempts to send this request result in denial of service to all PAN-OS services by rest
nvd
CVE-2021-3063P3HIGHCVSS 7.5≥ 8.1, < 8.1.21≥ 9.0, < 9.0.14-h4+3 more2021-11-10
CVE-2021-3063 [HIGH] CWE-755 CVE-2021-3063: An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks GlobalProt An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to send specifically crafted traffic to a GlobalProtect interface that causes the service to stop responding. Repeated attempts to send this request result in denial
nvd
CVE-2024-3385P3HIGHCVSS 7.5≥ 9.0.0, < 9.0.17-h4≥ 9.1.0, < 9.1.17+3 more2024-04-10
CVE-2024-3385 [HIGH] CWE-20 CVE-2024-3385: A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote attacker to reb A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote attacker to reboot hardware-based firewalls. Repeated attacks eventually cause the firewall to enter maintenance mode, which requires manual intervention to bring the firewall back online. This affects the following hardware firewall models: - PA-5400 Series firewalls -
nvd
CVE-2024-2551P3HIGHCVSS 7.5≥ 11.0.0, < 11.0.5≥ 10.2.0, < 10.2.4-h6+1 more2024-11-14
CVE-2024-2551 [HIGH] CWE-476 CVE-2024-2551: A null pointer dereference vulnerability in Palo Alto Networks PAN-OS software enables an unauthenti A null pointer dereference vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to stop a core system service on the firewall by sending a crafted packet through the data plane that causes a denial of service (DoS) condition. Repeated attempts to trigger this condition result in the firewall entering maintenance mode.
nvd
CVE-2026-0262P3MEDIUMCVSS 6.6≥ 12.1.0, < 12.1.7, 12.1.4-h5≥ 11.2.0, < 11.2.12, 11.2.10-h6, 11.2.7-h13, 11.2.4-h17+2 more2026-05-13
CVE-2026-0262 [MEDIUM] CWE-754 CVE-2026-0262: Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthent Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition by sending specially crafted network traffic. Panorama and Cloud NGFW are not impacted by these vulnerabilities.
nvd
CVE-2020-2013P3HIGHCVSS 8.8v8.0.*≥ 9.0, < 9.0.6+3 more2020-05-13
CVE-2020-2013 [HIGH] CWE-319 CVE-2020-2013: A cleartext transmission of sensitive information vulnerability in Palo Alto Networks PAN-OS Panoram A cleartext transmission of sensitive information vulnerability in Palo Alto Networks PAN-OS Panorama that discloses an authenticated PAN-OS administrator's PAN-OS session cookie. When an administrator issues a context switch request into a managed firewall with an affected PAN-OS Panorama version, their PAN-OS session cookie is transmitted over clearte
nvd
CVE-2020-2022P3HIGHCVSS 7.5≥ 8.1, < 8.1.17≥ 9.0, < 9.0.11+1 more2020-11-12
CVE-2020-2022 [HIGH] CWE-200 CVE-2020-2022: An information exposure vulnerability exists in Palo Alto Networks Panorama software that discloses An information exposure vulnerability exists in Palo Alto Networks Panorama software that discloses the token for the Panorama web interface administrator's session to a managed device when the Panorama administrator performs a context switch into that device. This vulnerability allows an attacker to gain privileged access to the Panorama web interface.
nvd
CVE-2024-3382P3HIGHCVSS 7.5≥ 10.2.0, < 10.2.7-h3≥ 11.0.0, < 11.0.4+1 more2024-04-10
CVE-2024-3382 [HIGH] CWE-770 CVE-2024-3382: A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a burst A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a burst of crafted packets through the firewall that eventually prevents the firewall from processing traffic. This issue applies only to PA-5400 Series devices that are running PAN-OS software with the SSL Forward Proxy feature enabled.
nvd
CVE-2020-1980P3HIGHCVSS 7.8v8.1 < 8.1.13v8.1 !>= 8.1.13+3 more2020-03-11
CVE-2020-1980 [HIGH] CWE-77 CVE-2020-1980: A shell command injection vulnerability in the PAN-OS CLI allows a local authenticated user to escap A shell command injection vulnerability in the PAN-OS CLI allows a local authenticated user to escape the restricted shell and escalate privileges. This issue affects only PAN-OS 8.1 versions earlier than PAN-OS 8.1.13. This issue does not affect PAN-OS 7.1, PAN-OS 9.0, or later PAN-OS versions. This issue is fixed in PAN-OS 8.1.13, and all later version
nvd
CVE-2024-3384P3HIGHCVSS 7.5≥ 8.1.0, < 8.1.24≥ 9.0.0, < 9.0.17+2 more2024-04-10
CVE-2024-3384 [HIGH] CWE-1286 CVE-2024-3384: A vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to reboot PAN-OS fir A vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to reboot PAN-OS firewalls when receiving Windows New Technology LAN Manager (NTLM) packets from Windows servers. Repeated attacks eventually cause the firewall to enter maintenance mode, which requires manual intervention to bring the firewall back online.
nvd
CVE-2020-1981P3HIGHCVSS 7.8v8.1 < 8.1.13v8.1 !>= 8.1.13+3 more2020-03-11
CVE-2020-1981 [HIGH] CWE-377 CVE-2020-1981: A predictable temporary filename vulnerability in PAN-OS allows local privilege escalation. This iss A predictable temporary filename vulnerability in PAN-OS allows local privilege escalation. This issue allows a local attacker who bypassed the restricted shell to execute commands as a low privileged user and gain root access on the PAN-OS hardware or virtual appliance. This issue affects only PAN-OS 8.1 versions earlier than PAN-OS 8.1.13. This issue
nvd
CVE-2024-8691P3HIGHCVSS 7.1≥ 9.1.0, < 9.1.17≥ 10.1.0, < 10.1.112024-09-11
CVE-2024-8691 [HIGH] CWE-863 CVE-2024-8691: A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a maliciou A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a malicious authenticated GlobalProtect user to impersonate another GlobalProtect user. Active GlobalProtect users impersonated by an attacker who is exploiting this vulnerability are disconnected from GlobalProtect. Upon exploitation, PAN-OS logs indicate that the
nvd
CVE-2021-3046P3MEDIUMCVSS 6.5≥ 8.1, < 8.1.19≥ 9.0, < 9.0.14+2 more2021-08-11
CVE-2021-3046 [MEDIUM] CWE-287 CVE-2021-3046: An improper authentication vulnerability exists in Palo Alto Networks PAN-OS software that enables a An improper authentication vulnerability exists in Palo Alto Networks PAN-OS software that enables a SAML authenticated attacker to impersonate any other user in the GlobalProtect Portal and GlobalProtect Gateway when they are configured to use SAML authentication. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.19; PAN-OS 9.0 versions
nvd
CVE-2024-8687P3HIGHCVSS 7.1≥ 11.0.0, < 11.0.1≥ 10.2.0, < 10.2.4+5 more2024-09-11
CVE-2024-8687 [HIGH] CWE-497 CVE-2024-8687: An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a Gl An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After the password or passcode is known, end users can uninstall, disable, or disconnect GlobalProtect even if the Global
nvd
CVE-2021-3054P3MEDIUMCVSS 6.6≥ 8.1, < 8.1.20≥ 9.0, < 9.0.14+3 more2021-09-08
CVE-2021-3054 [MEDIUM] CWE-367 CVE-2021-3054: A time-of-check to time-of-use (TOCTOU) race condition vulnerability in the Palo Alto Networks PAN-O A time-of-check to time-of-use (TOCTOU) race condition vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permission to upload plugins to execute arbitrary code with root user privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20; PAN-OS 9.0 versions earlier than PAN-OS 9.0
nvd
CVE-2021-3055P3MEDIUMCVSS 6.5≥ 9.0, < 9.0.14≥ 9.1, < 9.1.10+2 more2021-09-08
CVE-2021-3055 [MEDIUM] CWE-611 CVE-2021-3055: An improper restriction of XML external entity (XXE) reference vulnerability in the Palo Alto Networ An improper restriction of XML external entity (XXE) reference vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to read any arbitrary file from the file system and send a specifically crafted request to the firewall that causes the service to crash. Repeated attempts to send this request result in den
nvd
CVE-2026-0272P3MEDIUMCVSS 6.0≥ 12.1.0, < 12.1.4-h7≥ 11.2.0, < 11.2.4-h18+2 more2026-06-10
CVE-2026-0272 [MEDIUM] CWE-862 CVE-2026-0272: A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administrator with access to the Command Line Interface (CLI) to perform actions on the device with root privileges. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators and
nvd
CVE-2025-0127P3HIGHCVSS 7.1≥ 11.0.0, < 11.0.4≥ 10.2.0, < 10.2.9+1 more2025-04-11
CVE-2025-0127 [HIGH] CWE-78 CVE-2025-0127: A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated ad A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed. Cloud NGFW and Prisma® Access are not affected by this
nvd
CVE-2020-2003P3MEDIUMCVSS 6.5v7.1.*v8.0.*+3 more2020-05-13
CVE-2020-2003 [MEDIUM] CWE-73 CVE-2020-2003: An external control of filename vulnerability in the command processing of PAN-OS allows an authenti An external control of filename vulnerability in the command processing of PAN-OS allows an authenticated administrator to delete arbitrary system files affecting the integrity of the system or causing denial of service to all PAN-OS services. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions before 8.1.14; PAN-OS 9.0 versions
nvd
CVE-2025-0125P3MEDIUMCVSS 6.9≥ 11.2.0, < 11.2.5≥ 11.1.0, < 11.1.5+3 more2025-04-11
CVE-2025-0125 [MEDIUM] CWE-83 CVE-2025-0125: An improper input neutralization vulnerability in the management web interface of the Palo Alto Netw An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables a malicious authenticated read-write administrator to impersonate another legitimate authenticated PAN-OS administrator. The attacker must have network access to the management web interface to exploit this issue. You grea
nvd
Palo Alto Networks PAN-OS vulnerabilities | cvebase