Paloalto PAN-OS vulnerabilities

CVE-2012-6593 [CRITICAL] CWE-78 Command Injection Vulnerability Command Injection Vulnerability A vulnerability exists whereby an unauthenticated user can inject commands as root on the device. (Ref #30088) This vulnerability can result in arbitrary command execution, and can result in total compromise of the device. This issue affects PAN-OS 4.0.3 and earlier; PAN-OS 3.1.9 and earlier. Affected products: PAN-OS Solution: PAN-OS 4.0.4 and later; PAN-OS 3.1.10 and later. Workaround: This issu

CVE-2012-6603 [CRITICAL] CWE-287 Credential Bypass Vulnerability Credential Bypass Vulnerability A vulnerability exists whereby an unauthenticated user can get administrator access to the device via the web management UI without supplying credentials. (Ref #37034) This vulnerability can result in total compromise of the device. This issue affects PAN-OS 4.1.3 and earlier; PAN-OS 4.0.9 and earlier; PAN-OS 3.1.11 and earlier. Affected products: PAN-OS Solution: PAN-OS 4.1.4 and later; PAN-OS 4.

CVE-2012-6594 [CRITICAL] CWE-78 Command Injection Vulnerability Command Injection Vulnerability A vulnerability exists whereby an authenticated user can inject arbitrary shell commands using the device management command line interface. (Ref #34299) This vulnerability can result in arbitrary command execution, and can result in total compromise of the device. The attacker must still be an authenticated administrator of the device. This issue affects PAN-OS 4.1.0 and earlier; PAN-OS 4.0.7 and ea

CVE-2012-6602 [CRITICAL] CWE-78 Command Injection Vulnerability Command Injection Vulnerability A vulnerability exists whereby an authenticated user can inject arbitrary shell commands using the device management command line interface. (Ref #30122) This vulnerability can result in arbitrary command execution, and can result in total compromise of the device. This issue affects PAN-OS 4.0.3 and earlier; PAN-OS 3.1.9 and earlier. Affected products: PAN-OS Solution: PAN-OS 4.0.4 and later; PAN-

CVE-2012-6595 [CRITICAL] CWE-78 Command Injection Vulnerability Command Injection Vulnerability A vulnerability exists whereby an authenticated user can inject arbitrary shell commands using the device management command line interface. (Ref #34595) This vulnerability can result in arbitrary command execution, and can result in total compromise of the device. The attacker must still be an authenticated administrator of the device. This issue affects PAN-OS 4.1.1 and earlier; PAN-OS 4.0.8 and ea

CVE-2012-6604 [CRITICAL] CWE-78 Command Injection Vulnerability Command Injection Vulnerability A vulnerability exists whereby an authenticated user can execute arbitrary code as root using the device management command line interface. (Ref #35249) This vulnerability can result in arbitrary command execution, and can result in total compromise of the device. This issue affects PAN-OS 4.0.8 and earlier; PAN-OS 3.1.10 and earlier. Affected products: PAN-OS Solution: PAN-OS 4.0.9 and later; PAN-

CVE-2012-6605 [CRITICAL] CWE-78 Command Injection Vulnerability Command Injection Vulnerability A vulnerability exists whereby an authenticated user can execute arbitrary code as root using the device management command line interface. (Ref #34896) This vulnerability can result in arbitrary command execution, and can result in total compromise of the device. This issue affects PAN-OS 4.0.8 and earlier; PAN-OS 3.1.10 and earlier. Affected products: PAN-OS Solution: PAN-OS 4.0.9 and later; PAN-

CVE-2011-4108 [MEDIUM] CWE-310 OpenSSL Plain Text Recovery Attack Vulnerability OpenSSL Plain Text Recovery Attack Vulnerability The OpenSSL library implementation is vulnerable to a plain text recovery attack by performing timing analysis of the time required to decrypt encrypted data. A detailed report of this issue is available at http://www.isg.rhul.ac.uk/~kp/dtls.pdf. (Ref #36017) This vulnerability can theoretically result in plain text recovery of a web management UI session, leading to

CVE-2012-6597 [MEDIUM] CWE-20 Management Server DOS Vulnerability Management Server DOS Vulnerability An issue exists whereby the management server of the device can be crashed when an authenticated users sends a specially crafted command via the command line interface. (Ref #35254) This issue results in the unavailability of the management server of the device. The attacker must be an authenticated user of the device. This issue affects PAN-OS 4.0.8 and earlier; PAN-OS 3.1.10 and earlier. Aff

CVE-2012-6596 [MEDIUM] CWE-255 LDAP Passwords Logged in Clear Text LDAP Passwords Logged in Clear Text An issue exists whereby LDAP bind passwords are logged to authd.log in clear text when using the default logging level of 'debug'. (Ref #35493) This issue results in administrator passwords being logged and stored in clear text. Inappropriate access to this information can lead to unauthorized administration of the device. This issue affects PAN-OS 4.1.2 and earlier; PAN-OS 4.0.8 and earlier;

CVE-2012-6590 [MEDIUM] CWE-200 Verbose Error Messages Verbose Error Messages Under certain conditions, when unexpected input is provided to the web-based management UI, overly verbose error information is delivered back to the client. This does not directly result in any specific vulnerability, however this information is helpful to an attacker. (Ref #33139) This issue results in verbose error messages in specific cases, and does not directly result in an exploitable condition or product vulner

CVE-2024-0012 [CRITICAL] CWE-306 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit other authenticated privilege escala

CVE-2025-0128 [HIGH] CWE-754 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet A denial-of-service (DoS) vulnerability in the Simple Certificate Enrollment Protocol (SCEP) authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter

CVE-2025-4230 [HIGH] CWE-78 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI. The security risk posed by this issue is significantly minimiz

CVE-2025-0114 [HIGH] CWE-400 PAN-OS: Denial of Service (DoS) in GlobalProtect PAN-OS: Denial of Service (DoS) in GlobalProtect A Denial of Service (DoS) vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software enables an unauthenticated attacker to render the service unavailable by sending a large number of specially crafted packets over a period of time. This issue affects both the GlobalProtect portal and the GlobalProtect gateway. This issue does not apply to Cloud N

CVE-2025-0127 [HIGH] CWE-78 PAN-OS: Authenticated Admin Command Injection Vulnerability in PAN-OS VM-Series PAN-OS: Authenticated Admin Command Injection Vulnerability in PAN-OS VM-Series A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed. Cloud NGFW

CVE-2024-9472 [HIGH] CWE-476 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Traffic PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Traffic A null pointer dereference in Palo Alto Networks PAN-OS software on PA-800 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series hardware platforms when Decryption policy is enabled allows an unauthenticated attacker to crash PAN-OS by sending specific traffic through the data plane, resulting in a denial of service (

CVE-2025-0126 [HIGH] CWE-384 PAN-OS: Session Fixation Vulnerability in GlobalProtect SAML Login PAN-OS: Session Fixation Vulnerability in GlobalProtect SAML Login When configured using SAML, a session fixation vulnerability in the GlobalProtect™ login enables an attacker to impersonate a legitimate authorized user and perform actions as that GlobalProtect user. This requires the legitimate user to first click on a malicious link provided by the attacker. The SAML login for the PAN-OS® manageme

CVE-2025-4231 [HIGH] CWE-77 PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform actions as the root user. The attacker must have network access to the management web interface and successfully authenticate to exploit this issue. Cloud NGFW and P

CVE-2024-3393 [HIGH] CWE-754 PAN-OS: Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet PAN-OS: Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. Repeated attempts to trigger this condition will cause the fir