cbcvebase.

Palo Alto Networks PAN-OS vulnerabilities

170 known vulnerabilities affecting palo_alto_networks/pan-os.

Total CVEs
170
CISA KEV
10
actively exploited
Public exploits
9
Exploited in wild
11
Severity breakdown
CRITICAL14HIGH70MEDIUM73LOW13

Vulnerabilities

Page 8 of 9
CVE-2026-0269P4MEDIUMCVSS 4.6≥ 12.1.0, < 12.1.5≥ 11.2.0, < 11.2.10+2 more2026-06-10
CVE-2026-0269 [MEDIUM] CWE-754 CVE-2026-0269: A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. Panorama, Cloud NGFW, and Prisma® Access are not impacted by this
nvd
CVE-2024-5918P4MEDIUMCVSS 4.3≥ 11.0.0, < 11.0.3≥ 10.2.0, < 10.2.4-h5+1 more2024-11-14
CVE-2024-5918 [MEDIUM] CWE-295 CVE-2024-5918: An improper certificate validation vulnerability in Palo Alto Networks PAN-OS software enables an au An improper certificate validation vulnerability in Palo Alto Networks PAN-OS software enables an authorized user with a specially crafted client certificate to connect to an impacted GlobalProtect portal or GlobalProtect gateway as a different legitimate user. This attack is possible only if you "Allow Authentication with User Credentials OR Client C
nvd
CVE-2020-1995P4MEDIUMCVSS 4.9≥ 9.1, < 9.1.22020-05-13
CVE-2020-1995 [MEDIUM] CWE-476 CVE-2020-1995: A NULL pointer dereference vulnerability in Palo Alto Networks PAN-OS allows an authenticated admini A NULL pointer dereference vulnerability in Palo Alto Networks PAN-OS allows an authenticated administrator to send a request that causes the rasmgr daemon to crash. Repeated attempts to send this request result in denial of service to all PAN-OS services by restarting the device and putting it into maintenance mode. This issue affects: PAN-OS 9.1 ver
nvd
CVE-2024-8688P4MEDIUMCVSS 4.4≥ 9.1.0, < 9.1.15≥ 10.0.0, < 10.0.10+1 more2024-09-11
CVE-2024-8688 [MEDIUM] CWE-155 CVE-2024-8688: An improper neutralization of matching symbols vulnerability in the Palo Alto Networks PAN-OS comman An improper neutralization of matching symbols vulnerability in the Palo Alto Networks PAN-OS command line interface (CLI) enables authenticated administrators (including read-only administrators) with access to the CLI to to read arbitrary files on the firewall.
nvd
CVE-2025-2182P4MEDIUMCVSS 5.6≥ 11.2.0, < 11.2.8≥ 11.1.0, < 11.1.102025-08-13
CVE-2025-2182 [MEDIUM] CWE-312 CVE-2025-2182: A problem with the implementation of the MACsec protocol in Palo Alto Networks PAN-OS® results in th A problem with the implementation of the MACsec protocol in Palo Alto Networks PAN-OS® results in the cleartext exposure of the connectivity association key (CAK). This issue is only applicable to PA-7500 Series devices which are in an NGFW cluster. A user who possesses this key can read messages being sent between devices in a NGFW Cluster. There is
nvd
CVE-2018-10140P4MEDIUMCVSS 4.3v8.1.2 and earlier2018-08-16
CVE-2018-10140 [MEDIUM] CWE-20 CVE-2018-10140: The PAN-OS Management Web Interface in Palo Alto Networks PAN-OS 8.1.2 and earlier may allow an auth The PAN-OS Management Web Interface in Palo Alto Networks PAN-OS 8.1.2 and earlier may allow an authenticated user to shut down all management sessions, resulting in all logged in users to be redirected to the login page. PAN-OS 6.1, PAN-OS 7.1 and PAN-OS 8.0 are NOT affected.
nvd
CVE-2020-1982P4MEDIUMCVSS 4.8v8.0.*≥ 9.1, < 9.1.3+2 more2020-07-08
CVE-2020-1982 [MEDIUM] CWE-326 CVE-2020-1982: Certain communication between PAN-OS and cloud-delivered services inadvertently use TLS 1.0, which i Certain communication between PAN-OS and cloud-delivered services inadvertently use TLS 1.0, which is known to be a cryptographically weak protocol. These cloud services include Cortex Data Lake, the Customer Support Portal, and the Prisma Access infrastructure. Conditions required for exploitation of known TLS 1.0 weaknesses do not exist for the comm
nvd
CVE-2026-0256P4MEDIUMCVSS 4.4≥ 12.1.0, < 12.1.7≥ 11.2.0, < 11.2.12+2 more2026-05-13
CVE-2026-0256 [MEDIUM] CWE-79 CVE-2026-0256: A stored cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a m A stored cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama (virtual and M-Series). Cloud NGFW and Prisma® Access are not
nvd
CVE-2024-5920P4MEDIUMCVSS 4.8≥ 11.1.0, < 11.1.4≥ 11.0.0, < 11.0.6+2 more2024-11-14
CVE-2024-5920 [MEDIUM] CWE-79 CVE-2024-5920: A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables an authenti A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write Panorama administrator to push a specially crafted configuration to a PAN-OS node. This enables impersonation of a legitimate PAN-OS administrator who can perform restricted actions on the PAN-OS node after the execution of JavaScript in
nvd
CVE-2022-0022P4MEDIUMCVSS 4.4v9.0.*≥ 9.1, < 9.1.11+2 more2022-03-09
CVE-2022-0022 [MEDIUM] CWE-916 CVE-2022-0022: Usage of a weak cryptographic algorithm in Palo Alto Networks PAN-OS software where the password has Usage of a weak cryptographic algorithm in Palo Alto Networks PAN-OS software where the password hashes of administrator and local user accounts are not created with a sufficient level of computational effort, which allows for password cracking attacks on accounts in normal (non-FIPS-CC) operational mode. An attacker must have access to the account pa
nvd
CVE-2023-0008P4MEDIUMCVSS 4.4≥ 8.1, < 8.1.25≥ 9.0, < 9.0.17+5 more2023-05-10
CVE-2023-0008 [MEDIUM] CWE-73 CVE-2023-0008: A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read- A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write administrator with access to the web interface to export local files from the firewall through a race condition.
nvd
CVE-2021-3036P4MEDIUMCVSS 4.4≥ 8.1, < 8.1.19≥ 9.0, < 9.0.12+2 more2021-04-20
CVE-2021-3036 [MEDIUM] CWE-532 CVE-2021-3036: An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS software An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS software where secrets in PAN-OS XML API requests are logged in cleartext to the web server logs when the API is used incorrectly. This vulnerability applies only to PAN-OS appliances that are configured to use the PAN-OS XML API and exists only when a client inc
nvd
CVE-2020-1994P4MEDIUMCVSS 4.4v7.1.*v8.0.*+2 more2020-05-13
CVE-2020-1994 [MEDIUM] CWE-377 CVE-2020-1994: A predictable temporary file vulnerability in PAN-OS allows a local authenticated user with shell ac A predictable temporary file vulnerability in PAN-OS allows a local authenticated user with shell access to corrupt arbitrary system files affecting the integrity of the system. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions earlier than 9.0.7.
nvd
CVE-2023-0007P4MEDIUMCVSS 4.8≥ 10.0, < 10.0.7≥ 9.1, < 9.1.16+2 more2023-05-10
CVE-2023-0007 [MEDIUM] CWE-80 CVE-2023-0007: A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software on Panorama applian A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances enables an authenticated read-write administrator to store a JavaScript payload in the web interface that will execute in the context of another administrator’s browser when viewed.
nvd
CVE-2023-6789P4MEDIUMCVSS 4.8≥ 8.1, < 8.1.26≥ 9.0, < 9.0.17-h4+5 more2023-12-13
CVE-2023-6789 [MEDIUM] CWE-79 CVE-2023-6789: A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface. Then, when viewed by a properly authenticated administrator, the JavaScript payload executes and disguises all associated actions as performed by that unsuspec
nvd
CVE-2024-0007P4MEDIUMCVSS 4.8≥ 8.1, < 8.1.24-h1≥ 8.1, < 8.1.25+4 more2024-02-14
CVE-2024-0007 [MEDIUM] CWE-79 CVE-2024-0007: A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface on Panorama appliances. This enables the impersonation of another authenticated administrator.
nvd
CVE-2021-3032P4MEDIUMCVSS 4.4≥ 8.1, < 8.1.18≥ 9.0, < 9.0.12+2 more2021-01-13
CVE-2021-3032 [MEDIUM] CWE-532 CVE-2021-3032: An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS software An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS software where configuration secrets for the “http”, “email”, and “snmptrap” v3 log forwarding server profiles can be logged to the logrcvr.log system log. Logged information may include up to 1024 bytes of the configuration including the username and password in
nvd
CVE-2024-5916P4MEDIUMCVSS 4.4≥ 10.2, < 10.2.8≥ 11.0, < 11.0.42024-08-14
CVE-2024-5916 [MEDIUM] CWE-313 CVE-2024-5916: An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local system a An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local system administrator to unintentionally disclose secrets, passwords, and tokens of external systems. A read-only administrator who has access to the config log, can read secrets, passwords, and tokens to external systems.
nvd
CVE-2025-0124P4LOWCVSS 3.8≥ 11.2.0, < 11.2.1≥ 11.1.0, < 11.1.5+3 more2025-04-11
CVE-2025-0124 [LOW] CWE-73 CVE-2025-0124: An authenticated file deletion vulnerability in the Palo Alto Networks PAN-OS® software enables an a An authenticated file deletion vulnerability in the Palo Alto Networks PAN-OS® software enables an authenticated attacker with network access to the management web interface to delete certain files as the “nobody” user; this includes limited logs and configuration files but does not include system files. The attacker must have network access to the manag
nvd
CVE-2026-0228P4LOWCVSS 1.3≥ 11.2.0, < 11.2.8≥ 11.1.0, < 11.1.11+1 more2026-02-11
CVE-2026-0228 [LOW] CWE-295 CVE-2026-0228: An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server A An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so.
nvd
Palo Alto Networks PAN-OS vulnerabilities | cvebase