cbcvebase.

Paloaltonetworks PAN-OS vulnerabilities

211 known vulnerabilities affecting paloaltonetworks/pan-os.

Total CVEs
211
CISA KEV
14
actively exploited
Public exploits
17
Exploited in wild
15
Severity breakdown
CRITICAL36HIGH77MEDIUM89LOW9

Vulnerabilities

Page 1 of 11
CVE-2024-3400P1CRITICALCVSS 10.0KEVPoCRansomwarev10.2.0v10.2.1+16 more2024-04-12
CVE-2024-3400 [CRITICAL] CWE-20 CVE-2024-3400: A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect featur A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma
nvd
CVE-2024-0012P1CRITICALCVSS 9.8KEVPoCRansomwarev10.2.0v10.2.1+29 more2024-11-18
CVE-2024-0012 [CRITICAL] CWE-306 CVE-2024-0012: An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker w An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit other authenticated privilege escalation vulnerabilities like CVE-2024-9474 https:/
nvd
CVE-2017-15944P1CRITICALCVSS 9.8KEVPoCfixed in 6.1.19≥ 7.0.0, < 7.0.19+2 more2017-12-11
CVE-2017-15944 [CRITICAL] CWE-20 CVE-2017-15944: Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.
nvd
CVE-2025-0108P1CRITICALCVSS 9.1KEVPoC≥ 10.1.0, < 10.1.14≥ 10.2.0, < 10.2.7+16 more2025-02-12
CVE-2025-0108 [CRITICAL] CWE-306 CVE-2025-0108: An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated attack An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to bypass the authentication otherwise required by the PAN-OS management web interface and invoke certain PHP scripts. While invoking these PHP scripts does not enable remote code execution, it ca
nvd
CVE-2026-0257P1CRITICALCVSS 9.1KEVPoCfixed in 10.2.7v10.2.7+158 more2026-05-13
CVE-2026-0257 [CRITICAL] CWE-565 CVE-2026-0257: Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues.
nvd
CVE-2024-9474P1HIGHCVSS 7.2KEVPoCRansomware≥ 10.1.0, < 10.1.14≥ 10.2.0, < 10.2.12+8 more2024-11-18
CVE-2024-9474 [HIGH] CWE-78 CVE-2024-9474: A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administr A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administrator with access to the management web interface to perform actions on the firewall with root privileges. Cloud NGFW and Prisma Access are not impacted by this vulnerability.
nvd
CVE-2016-5195P1HIGHCVSS 7.0KEVPoC≥ 5.1, < 7.0.14≥ 7.1.0, < 7.1.82016-11-10
CVE-2016-5195 [HIGH] CWE-362 CVE-2016-5195: Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to ga Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."
nvd
CVE-2019-1579P1HIGHCVSS 8.1KEVPoCRansomwarefixed in 7.1.19≥ 8.0.0, < 8.0.12+1 more2019-07-19
CVE-2019-1579 [HIGH] CWE-134 CVE-2019-1579: Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 a Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 and earlier with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauthenticated remote attacker to execute arbitrary code.
nvd
CVE-2026-0300P1CRITICALCVSS 9.8KEVRansomwarev10.2.0v10.2.1+49 more2026-05-06
CVE-2026-0300 [CRITICAL] CWE-787 CVE-2026-0300: A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service o A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. The risk of this issue is greatly reduced if you sec
nvd
CVE-2018-14634P1HIGHCVSS 7.8KEVPoC≥ 7.1.0, < 7.1.23≥ 8.0.0, < 8.0.16+1 more2018-09-25
CVE-2018-14634 [HIGH] CWE-190 CVE-2018-14634: An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileg An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.
nvd
CVE-2024-3393P1HIGHCVSS 7.5KEVPoC≥ 11.1.0, ≤ 11.1.1≥ 11.2.0, < 11.2.3+10 more2024-12-27
CVE-2024-3393 [HIGH] CWE-754 CVE-2024-3393: A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.
nvd
CVE-2020-2021P1CRITICALCVSS 10.0KEVRansomware≥ 8.0.0, ≤ 8.0.20≥ 8.1.0, < 8.1.15+2 more2020-06-29
CVE-2020-2021 [CRITICAL] CWE-347 CVE-2020-2021: When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option is disabled (unchecked), improper verification of signatures in PAN-OS SAML authentication enables an unauthenticated network-based attacker to access protected resources. The attacker must have network access to the vulner
nvd
CVE-2025-0111P1MEDIUMCVSS 6.5KEV≥ 10.1.0, < 10.1.14≥ 10.2.0, < 10.2.7+11 more2025-02-12
CVE-2025-0111 [MEDIUM] CWE-73 CVE-2025-0111: An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an authen An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker with network access to the management web interface to read files on the PAN-OS filesystem that are readable by the “nobody” user. You can greatly reduce the risk of this issue by restricting access to the management web interface to on
nvd
CVE-2022-0028P2HIGHCVSS 8.6KEV≥ 8.1.0, < 8.1.23≥ 9.0.0, < 9.0.16+10 more2022-08-10
CVE-2022-0028 [HIGH] CWE-406 CVE-2022-0028: A PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct refle A PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct reflected and amplified TCP denial-of-service (RDoS) attacks. The DoS attack would appear to originate from a Palo Alto Networks PA-Series (hardware), VM-Series (virtual) and CN-Series (container) firewall against an attacker-specified target. To be misused by
nvd
CVE-2020-2034P1HIGHCVSS 8.1Exploited≥ 7.1.0, ≤ 7.1.26≥ 8.0.0, ≤ 8.0.20+3 more2020-07-08
CVE-2020-2034 [HIGH] CWE-78 CVE-2020-2034: An OS Command Injection vulnerability in the PAN-OS GlobalProtect portal allows an unauthenticated n An OS Command Injection vulnerability in the PAN-OS GlobalProtect portal allows an unauthenticated network based attacker to execute arbitrary OS commands with root privileges. An attacker requires some knowledge of the firewall to exploit this issue. This issue can not be exploited if GlobalProtect portal feature is not enabled. This issue impacts PAN-O
nvd
CVE-2020-2038P2HIGHCVSS 7.2PoC≥ 9.0.0, < 9.0.10≥ 9.1.0, < 9.1.4+1 more2020-09-09
CVE-2020-2038 [HIGH] CWE-78 CVE-2020-2038: An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated a An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 9.0 versions earlier than 9.0.10; PAN-OS 9.1 versions earlier than 9.1.4; PAN-OS 10.0 versions earlier than 10.0.1.
nvd
CVE-2016-9150P2CRITICALCVSS 9.8PoC≥ 5.0.0, < 5.0.20≥ 5.1, < 5.1.13+4 more2016-11-19
CVE-2016-9150 [CRITICAL] CWE-119 CVE-2016-9150: Buffer overflow in the management web interface in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x be Buffer overflow in the management web interface in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 allows remote attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2016-4971P2HIGHCVSS 8.8PoC≥ 6.1.0, ≤ 6.1.16≥ 7.0.0, ≤ 7.0.14+1 more2016-06-30
CVE-2016-4971 [HIGH] CVE-2016-4971: GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource.
nvd
CVE-2020-2036P2HIGHCVSS 8.8PoC≥ 8.1.0, < 8.1.16≥ 9.0.0, < 9.0.92020-09-09
CVE-2020-2036 [HIGH] CWE-79 CVE-2020-2036: A reflected cross-site scripting (XSS) vulnerability exists in the PAN-OS management web interface. A reflected cross-site scripting (XSS) vulnerability exists in the PAN-OS management web interface. A remote attacker able to convince an administrator with an active authenticated session on the firewall management interface to click on a crafted link to that management web interface could potentially execute arbitrary JavaScript code in the administrato
nvd
CVE-2021-3064P2CRITICALCVSS 9.8≥ 8.1.0, < 8.1.172021-11-10
CVE-2021-3064 [CRITICAL] CWE-121 CVE-2021-3064: A memory corruption vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway inte A memory corruption vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to disrupt system processes and potentially execute arbitrary code with root privileges. The attacker must have network access to the GlobalProtect interface to exploit this issue. This iss
nvd
1 / 11Next →