Paloaltonetworks PAN-OS vulnerabilities
211 known vulnerabilities affecting paloaltonetworks/pan-os.
Total CVEs
211
CISA KEV
14
actively exploited
Public exploits
17
Exploited in wild
15
Severity breakdown
CRITICAL36HIGH77MEDIUM89LOW9
Vulnerabilities
Page 2 of 11
CVE-2021-3060P2HIGHCVSS 8.1≥ 8.1.0, ≤ 8.1.20≥ 9.0.0, ≤ 9.0.14+3 more2021-11-10
CVE-2021-3060 [HIGH] CWE-78 CVE-2021-3060: An OS command injection vulnerability in the Simple Certificate Enrollment Protocol (SCEP) feature o
An OS command injection vulnerability in the Simple Certificate Enrollment Protocol (SCEP) feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have network access to the GlobalProtect interfaces to exploit t
nvd
CVE-2019-1581P2CRITICALCVSS 9.8≤ 7.1.24≥ 8.0.0, ≤ 8.0.19+2 more2019-08-23
CVE-2019-1581 [CRITICAL] CWE-78 CVE-2019-1581: A remote code execution vulnerability in the PAN-OS SSH device management interface that can lead to
A remote code execution vulnerability in the PAN-OS SSH device management interface that can lead to unauthenticated remote users with network access to the SSH management interface gaining root access to PAN-OS. This issue affects PAN-OS 7.1 versions prior to 7.1.24-h1, 7.1.25; 8.0 versions prior to 8.0.19-h1, 8.0.20; 8.1 versions prior to 8.1.9-h4,
nvd
CVE-2020-2040P2CRITICALCVSS 9.8≥ 8.0.0, ≤ 8.0.20≥ 8.1.0, < 8.1.15+2 more2020-09-09
CVE-2020-2040 [CRITICAL] CWE-120 CVE-2020-2040: A buffer overflow vulnerability in PAN-OS allows an unauthenticated attacker to disrupt system proce
A buffer overflow vulnerability in PAN-OS allows an unauthenticated attacker to disrupt system processes and potentially execute arbitrary code with root privileges by sending a malicious request to the Captive Portal or Multi-Factor Authentication interface. This issue impacts: All versions of PAN-OS 8.0; PAN-OS 8.1 versions earlier than PAN-OS 8.1
nvd
CVE-2018-18065P3MEDIUMCVSS 6.5PoC≤ 7.1.22≥ 7.1.23, ≤ 8.0.15+1 more2018-10-08
CVE-2018-18065 [MEDIUM] CWE-476 CVE-2018-18065: _set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug
_set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
nvd
CVE-2016-9151P3HIGHCVSS 7.8PoC≥ 5.0.0, < 5.0.20≥ 5.1, < 5.1.13+4 more2016-11-19
CVE-2016-9151 [HIGH] CWE-264 CVE-2016-9151: Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.
Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 allows local users to gain privileges via crafted values of unspecified environment variables.
nvd
CVE-2016-3655P2CRITICALCVSS 9.8≥ 5.0.0, < 5.0.18≥ 5.1, < 5.1.11+3 more2016-04-12
CVE-2016-3655 [CRITICAL] CWE-20 CVE-2016-3655: The management web interface in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x
The management web interface in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5 allows remote attackers to execute arbitrary OS commands via an unspecified API call.
nvd
CVE-2019-17440P2CRITICALCVSS 9.8≥ 9.0, ≤ 9.0.52019-12-20
CVE-2019-17440 [CRITICAL] CWE-923 CVE-2019-17440: Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with s
Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with second-generation Switch Management Card (SMC) may allow an attacker with network access to the LFC to gain root access to PAN-OS. This issue affects PAN-OS 9.0 versions prior to 9.0.5-h3 on PA-7080 and PA-7050 devices with an LFC installed and confi
nvd
CVE-2018-10141P3MEDIUMCVSS 6.1PoCfixed in 6.1.0≥ 7.0.0, ≤ 7.0.19+1 more2018-10-12
CVE-2018-10141 [MEDIUM] CWE-79 CVE-2018-10141: GlobalProtect Portal Login page in Palo Alto Networks PAN-OS before 8.1.4 allows an unauthenticated
GlobalProtect Portal Login page in Palo Alto Networks PAN-OS before 8.1.4 allows an unauthenticated attacker to inject arbitrary JavaScript or HTML.
nvd
CVE-2017-8390P2CRITICALCVSS 9.8≤ 6.1.17v7.0.1+29 more2017-08-02
CVE-2017-8390 [CRITICAL] CWE-20 CVE-2017-8390: The DNS Proxy in Palo Alto Networks PAN-OS before 6.1.18, 7.x before 7.0.16, 7.1.x before 7.1.11, an
The DNS Proxy in Palo Alto Networks PAN-OS before 6.1.18, 7.x before 7.0.16, 7.1.x before 7.1.11, and 8.x before 8.0.3 allows remote attackers to execute arbitrary code via a crafted domain name.
nvd
CVE-2020-2018P2CRITICALCVSS 9.0≥ 7.1.0, < 7.1.26≥ 8.0.0, ≤ 8.0.20+2 more2020-05-13
CVE-2020-2018 [CRITICAL] CWE-287 CVE-2020-2018: An authentication bypass vulnerability in the Panorama context switching feature allows an attacker
An authentication bypass vulnerability in the Panorama context switching feature allows an attacker with network access to a Panorama's management interface to gain privileged access to managed firewalls. An attacker requires some knowledge of managed firewalls to exploit this issue. This issue does not affect Panorama configured with custom certific
nvd
CVE-2020-2001P2CRITICALCVSS 9.8≥ 7.1.0, ≤ 7.1.26≥ 8.0.0, ≤ 8.0.20+2 more2020-05-13
CVE-2020-2001 [CRITICAL] CWE-123 CVE-2020-2001: An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT pr
An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT processing logic that allows an unauthenticated user with network access to PAN-OS management interface to write attacker supplied file on the system and elevate privileges. This issue affects: All PAN-OS 7.1 Panorama and 8.0 Panorama versions; PAN-OS 8
nvd
CVE-2021-3050P2HIGHCVSS 8.8≥ 9.0.0, < 9.0.15≥ 9.1.0, < 9.1.11+2 more2021-08-11
CVE-2021-3050 [HIGH] CWE-78 CVE-2021-3050: An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an auth
An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 9.0 version 9.0.10 through PAN-OS 9.0.14; PAN-OS 9.1 version 9.1.4 through PAN-OS 9.1.10; PAN-OS 10.0 version 10.0.7 and earlier PAN-OS 10.0 version
nvd
CVE-2017-15940P3CRITICALCVSS 9.8fixed in 6.1.19≥ 7.0.0, < 7.0.19+2 more2017-12-11
CVE-2017-15940 [CRITICAL] CWE-77 CVE-2017-15940: The web interface packet capture management component in Palo Alto Networks PAN-OS before 6.1.19, 7.
The web interface packet capture management component in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote authenticated users to execute arbitrary code via unspecified vectors.
nvd
CVE-2016-8610P3HIGHCVSS 7.5≤ 6.1.17≥ 7.0.0, ≤ 7.0.15+1 more2017-11-13
CVE-2016-8610 [HIGH] CWE-400 CVE-2016-8610: A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the w
A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients.
nvd
CVE-2020-1992P3CRITICALCVSS 9.8≥ 9.0.0, < 9.0.7≥ 9.1.0, < 9.1.22020-04-08
CVE-2020-1992 [CRITICAL] CWE-134 CVE-2020-1992: A format string vulnerability in the Varrcvr daemon of PAN-OS on PA-7000 Series devices with a Log F
A format string vulnerability in the Varrcvr daemon of PAN-OS on PA-7000 Series devices with a Log Forwarding Card (LFC) allows remote attackers to crash the daemon creating a denial of service condition or potentially execute code with root privileges. This issue affects Palo Alto Networks PAN-OS 9.0 versions before 9.0.7; PAN-OS 9.1 versions befor
nvd
CVE-2012-6601P3CRITICALCVSS 10.0≤ 3.1.11v3.1.9+14 more2013-08-31
CVE-2012-6601 [CRITICAL] CWE-78 CVE-2012-6601: The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.12, 4.0.x befor
The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.12, 4.0.x before 4.0.10, and 4.1.x before 4.1.4 allows remote attackers to execute arbitrary code via unspecified vectors, aka Ref ID 36983.
nvd
CVE-2020-2014P3HIGHCVSS 8.8≥ 7.1.0, ≤ 7.1.26≥ 8.0.0, ≤ 8.0.20+2 more2020-05-13
CVE-2020-2014 [HIGH] CWE-78 CVE-2020-2014: An OS Command Injection vulnerability in PAN-OS management server allows authenticated users to inje
An OS Command Injection vulnerability in PAN-OS management server allows authenticated users to inject and execute arbitrary shell commands with root privileges. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7.
nvd
CVE-2020-2015P3HIGHCVSS 8.8≥ 7.1.0, < 7.1.26≥ 8.0.0, ≤ 8.0.20+3 more2020-05-13
CVE-2020-2015 [HIGH] CWE-120 CVE-2020-2015: A buffer overflow vulnerability in the PAN-OS management server allows authenticated users to crash
A buffer overflow vulnerability in the PAN-OS management server allows authenticated users to crash system processes or potentially execute arbitrary code with root privileges. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions earlier than 9.0.7; PAN-OS 9.1 versions earlier than 9.1.
nvd
CVE-2021-3056P3HIGHCVSS 8.8≥ 8.1.0, < 8.1.20≥ 9.0.0, < 9.0.14+2 more2021-11-10
CVE-2021-3056 [HIGH] CWE-120 CVE-2021-3056: A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN enables
A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN enables an authenticated attacker to execute arbitrary code with root user privileges during SAML authentication. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20; PAN-OS 9.0 versions earlier than PAN-OS 9.0.14; PAN-OS 9.1 versions earlier than P
nvd
CVE-2020-2006P3HIGHCVSS 8.8≥ 7.1.0, ≤ 7.1.26≥ 8.0.0, ≤ 8.0.20+1 more2020-05-13
CVE-2020-2006 [HIGH] CWE-121 CVE-2020-2006: A stack-based buffer overflow vulnerability in the management server component of PAN-OS that allows
A stack-based buffer overflow vulnerability in the management server component of PAN-OS that allows an authenticated user to potentially execute arbitrary code with root privileges. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14.
nvd