cbcvebase.

Paloaltonetworks PAN-OS vulnerabilities

211 known vulnerabilities affecting paloaltonetworks/pan-os.

Total CVEs
211
CISA KEV
14
actively exploited
Public exploits
17
Exploited in wild
15
Severity breakdown
CRITICAL36HIGH77MEDIUM89LOW9

Vulnerabilities

Page 7 of 11
CVE-2021-3054P3MEDIUMCVSS 6.6≥ 8.1.0, < 8.1.20≥ 9.0.0, < 9.0.14+3 more2021-09-08
CVE-2021-3054 [MEDIUM] CWE-367 CVE-2021-3054: A time-of-check to time-of-use (TOCTOU) race condition vulnerability in the Palo Alto Networks PAN-O A time-of-check to time-of-use (TOCTOU) race condition vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permission to upload plugins to execute arbitrary code with root user privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20; PAN-OS 9.0 versions earlier than PAN-OS 9.0
nvd
CVE-2021-3055P3MEDIUMCVSS 6.5≥ 8.1.0, < 8.1.20≥ 9.0.0, < 9.0.14+2 more2021-09-08
CVE-2021-3055 [MEDIUM] CWE-611 CVE-2021-3055: An improper restriction of XML external entity (XXE) reference vulnerability in the Palo Alto Networ An improper restriction of XML external entity (XXE) reference vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to read any arbitrary file from the file system and send a specifically crafted request to the firewall that causes the service to crash. Repeated attempts to send this request result in den
nvd
CVE-2020-2003P3MEDIUMCVSS 6.5≥ 7.1.0, ≤ 7.1.26≥ 8.0.0, ≤ 8.0.20+3 more2020-05-13
CVE-2020-2003 [MEDIUM] CWE-73 CVE-2020-2003: An external control of filename vulnerability in the command processing of PAN-OS allows an authenti An external control of filename vulnerability in the command processing of PAN-OS allows an authenticated administrator to delete arbitrary system files affecting the integrity of the system or causing denial of service to all PAN-OS services. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions before 8.1.14; PAN-OS 9.0 versions
nvd
CVE-2016-3656P3HIGHCVSS 7.5≥ 5.0.0, < 5.0.18≥ 5.1, < 5.1.11+3 more2016-04-12
CVE-2016-3656 [HIGH] CWE-119 CVE-2016-3656: The GlobalProtect Portal in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x befo The GlobalProtect Portal in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote attackers to cause a denial of service (service crash) via a crafted request.
nvd
CVE-2016-9149P3MEDIUMCVSS 6.5≥ 5.0.0, < 5.0.20≥ 5.1.0, < 5.1.13+4 more2016-11-19
CVE-2016-9149 [MEDIUM] CWE-19 CVE-2016-9149: The Addresses Object parser in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x b The Addresses Object parser in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 mishandles single quote characters, which allows remote authenticated users to conduct XPath injection attacks via a crafted string.
nvd
CVE-2022-0011P3MEDIUMCVSS 6.5≥ 8.1.0, < 8.1.21≥ 9.0.0, ≤ 9.0.15+3 more2022-02-10
CVE-2022-0011 [MEDIUM] CWE-436 CVE-2022-0011: PAN-OS software provides options to exclude specific websites from URL category enforcement and thos PAN-OS software provides options to exclude specific websites from URL category enforcement and those websites are blocked or allowed (depending on your rules) regardless of their associated URL category. This is done by creating a custom URL category list or by using an external dynamic list (EDL) in a URL Filtering profile. When the entries in these
nvd
CVE-2024-0009P3MEDIUMCVSS 6.3v11.0.0≥ 10.2.0, < 10.2.42024-02-14
CVE-2024-0009 [MEDIUM] CWE-940 CVE-2024-0009: An improper verification vulnerability in the GlobalProtect gateway feature of Palo Alto Networks PA An improper verification vulnerability in the GlobalProtect gateway feature of Palo Alto Networks PAN-OS software enables a malicious user with stolen credentials to establish a VPN connection from an unauthorized IP address.
nvd
CVE-2023-0004P3MEDIUMCVSS 6.5≥ 8.1.0, < 8.1.24≥ 9.0.0, < 9.0.17+3 more2023-04-12
CVE-2023-0004 [MEDIUM] CWE-703 CVE-2023-0004: A local file deletion vulnerability in Palo Alto Networks PAN-OS software enables an authenticated a A local file deletion vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to delete files from the local file system with elevated privileges. These files can include logs and system components that impact the integrity and availability of PAN-OS software.
nvd
CVE-2020-2016P4HIGHCVSS 7.0≥ 7.1.0, < 7.1.26≥ 8.0.0, ≤ 8.0.20+2 more2020-05-13
CVE-2020-2016 [HIGH] CWE-377 CVE-2020-2016: A race condition due to insecure creation of a file in a temporary directory vulnerability in PAN-OS A race condition due to insecure creation of a file in a temporary directory vulnerability in PAN-OS allows for root privilege escalation from a limited linux user account. This allows an attacker who has escaped the restricted shell as a low privilege administrator, possibly by exploiting another vulnerability, to escalate privileges to become root use
nvd
CVE-2017-7216P4MEDIUMCVSS 6.5≤ 7.1.82017-05-02
CVE-2017-7216 [MEDIUM] CWE-200 CVE-2017-7216: The Management Web Interface in Palo Alto Networks PAN-OS before 7.1.9 allows remote authenticated u The Management Web Interface in Palo Alto Networks PAN-OS before 7.1.9 allows remote authenticated users to obtain sensitive information via unspecified request parameters.
nvd
CVE-2017-17841P4MEDIUMCVSS 5.9v6.1.0v7.1.0+22 more2018-01-10
CVE-2017-17841 [MEDIUM] CVE-2017-17841: Palo Alto Networks PAN-OS 6.1, 7.1, and 8.0.x before 8.0.7, when an interface implements SSL decrypt Palo Alto Networks PAN-OS 6.1, 7.1, and 8.0.x before 8.0.7, when an interface implements SSL decryption with RSA enabled or hosts a GlobalProtect portal or gateway, might allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.
nvd
CVE-2024-3387P4MEDIUMCVSS 5.9≥ 10.1.0, < 10.1.12≥ 10.2.0, < 10.2.7+2 more2024-04-10
CVE-2024-3387 [MEDIUM] CWE-326 CVE-2024-3387: A weak (low bit strength) device certificate in Palo Alto Networks Panorama software enables an atta A weak (low bit strength) device certificate in Palo Alto Networks Panorama software enables an attacker to perform a meddler-in-the-middle (MitM) attack to capture encrypted traffic between the Panorama management server and the firewalls it manages. With sufficient computing resources, the attacker could break encrypted communication and expose sens
nvd
CVE-2023-6795P4MEDIUMCVSS 4.7≥ 8.1.0, < 8.1.24≥ 9.0.0, < 9.0.17+3 more2023-12-13
CVE-2023-6795 [MEDIUM] CWE-78 CVE-2023-6795: An OS command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated An OS command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.
nvd
CVE-2017-7644P4MEDIUMCVSS 6.5≤ 6.1.15v7.0.0+23 more2017-04-29
CVE-2017-7644 [MEDIUM] CWE-200 CVE-2017-7644: The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.17, 7.x before 7.0.15, and 7.1. The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.17, 7.x before 7.0.15, and 7.1.x before 7.1.9 allows remote authenticated users to obtain sensitive information by leveraging incorrect permission validation, aka PAN-SA-2017-0013 and PAN-70541.
nvd
CVE-2018-10139P4MEDIUMCVSS 6.1≤ 6.1.21≥ 7.1.0, ≤ 7.1.18+1 more2018-08-16
CVE-2018-10139 [MEDIUM] CWE-79 CVE-2018-10139: The PAN-OS response for GlobalProtect Gateway in Palo Alto Networks PAN-OS 6.1.21 and earlier, PAN-O The PAN-OS response for GlobalProtect Gateway in Palo Alto Networks PAN-OS 6.1.21 and earlier, PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and earlier may allow an unauthenticated attacker to inject arbitrary JavaScript or HTML. PAN-OS 8.1 is NOT affected.
nvd
CVE-2021-3048P4MEDIUMCVSS 5.9≥ 9.0.0, < 9.0.14≥ 9.1.0, < 9.1.9+1 more2021-08-11
CVE-2021-3048 [MEDIUM] CWE-20 CVE-2021-3048: Certain invalid URL entries contained in an External Dynamic List (EDL) cause the Device Server daem Certain invalid URL entries contained in an External Dynamic List (EDL) cause the Device Server daemon (devsrvr) to stop responding. This condition causes subsequent commits on the firewall to fail and prevents administrators from performing commits and configuration changes even though the firewall remains otherwise functional. If the firewall then re
nvd
CVE-2022-0023P4MEDIUMCVSS 5.9≥ 8.1.0, < 8.1.22≥ 9.0.0, < 9.0.16+3 more2022-04-13
CVE-2022-0023 [MEDIUM] CWE-755 CVE-2022-0023: An improper handling of exceptional conditions vulnerability exists in the DNS proxy feature of Palo An improper handling of exceptional conditions vulnerability exists in the DNS proxy feature of Palo Alto Networks PAN-OS software that enables a meddler-in-the-middle (MITM) to send specifically crafted traffic to the firewall that causes the service to restart unexpectedly. Repeated attempts to send this request result in denial-of-service to all PA
nvd
CVE-2020-1999P4MEDIUMCVSS 5.3≥ 7.1.0, ≤ 7.1.26≥ 8.0.0, ≤ 8.0.20+3 more2020-11-12
CVE-2020-1999 [MEDIUM] CWE-754 CVE-2020-1999: A vulnerability exists in the Palo Alto Network PAN-OS signature-based threat detection engine that A vulnerability exists in the Palo Alto Network PAN-OS signature-based threat detection engine that allows an attacker to communicate with devices in the network in a way that is not analyzed for threats by sending data through specifically crafted TCP packets. This technique evades signature-based threat detection. This issue impacts: PAN-OS 8.1 versi
nvd
CVE-2023-6794P4MEDIUMCVSS 4.7≥ 8.1.0, < 8.1.26≥ 9.0.0, < 9.0.17+1 more2023-12-13
CVE-2023-6794 [MEDIUM] CWE-434 CVE-2023-6794: An arbitrary file upload vulnerability in Palo Alto Networks PAN-OS software enables an authenticate An arbitrary file upload vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.
nvd
CVE-2019-1566P4MEDIUMCVSS 6.1≥ 7.1.0, < 7.1.22≥ 8.0.0, < 8.0.15+1 more2019-01-30
CVE-2019-1566 [MEDIUM] CWE-79 CVE-2019-1566: The PAN-OS management web interface in PAN-OS 7.1.21 and earlier, PAN-OS 8.0.14 and earlier, and PAN The PAN-OS management web interface in PAN-OS 7.1.21 and earlier, PAN-OS 8.0.14 and earlier, and PAN-OS 8.1.5 and earlier, may allow an unauthenticated attacker to inject arbitrary JavaScript or HTML.
nvd
Paloaltonetworks PAN-OS vulnerabilities | cvebase