Paloalto Panorama vulnerabilities

CVE-2024-9474 [CRITICAL] CWE-306 PAN-SA-2024-0015 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) PAN-SA-2024-0015 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit ot

CVE-2018-12126 [MEDIUM] CWE-200 PAN-SA-2019-0012 Information about Recent Intel Side Channel Vulnerabilities PAN-SA-2019-0012 Information about Recent Intel Side Channel Vulnerabilities Palo Alto Networks has determined that WildFire Appliance (WF-500) and WildFire Cloud are CVEs: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091 Affected products: PAN-OS, Panorama

CVE-2018-3615 [MEDIUM] CWE-200 PAN-SA-2018-0011 Information about L1 Terminal Fault findings PAN-SA-2018-0011 Information about L1 Terminal Fault findings Palo Alto Networks is aware of recent vulnerability disclosures, known as L1 Terminal Fault, that affect modern CPU architectures. At this time, our findings show that these vulnerabilities pose no increased risk to Palo Alto Networks PAN-OS devices. (CVE-2018-3615, CVE-2018-3620, and CVE-2018-3646). This security advisory will be updated as

CVE-2017-5715 [MEDIUM] CWE-200 PAN-SA-2018-0001 Information about Meltdown and Spectre findings PAN-SA-2018-0001 Information about Meltdown and Spectre findings Palo Alto Networks is aware of recent vulnerability disclosures, known as Meltdown and Spectre, that affect modern CPU architectures. At this time, our findings show that these vulnerabilities pose no increased risk to Palo Alto Networks PAN-OS devices. (CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754). This security advisory will be up

CVE-2014-6271 [CRITICAL] CWE-78 PAN-SA-2014-0004 Bash Shell remote code execution (CVE-2014-6271, CVE-2014-7169) PAN-SA-2014-0004 Bash Shell remote code execution (CVE-2014-6271, CVE-2014-7169) Palo Alto Networks has become aware of a remote code execution vulnerability in the Bash shell utility. This vulnerability (CVE-2014-6271) allows for remote code execution through multiple vectors due to the way Bash is often used on linux systems for processing commands. Additional information can be fo

CVE-2026-0229 [MEDIUM] CWE-754 PAN-OS: Denial of Service in Advanced DNS Security Feature PAN-OS: Denial of Service in Advanced DNS Security Feature A denial-of-service (DoS) vulnerability in the Advanced DNS Security (ADNS) feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. Panorama, Cloud NGFW, and Prisma Access®