Latest vulnerabilities for vendor "paloaltonetworks"

7.2

EPSS

97.40%

First published (updated )

CVE-2024-9474

Paloaltonetworks Pan-osPAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015)

9.8

First published (updated )

CVE-2024-0012

Paloaltonetworks GlobalprotectGlobalProtect App: Local Privilege Escalation (PE) Vulnerability

7.8

EPSS

0.04%

First published (updated )

CVE-2024-9473

Paloaltonetworks Pan-osPAN-OS: Privilege Escalation (PE) Vulnerability in XML API

5.1

EPSS

0.04%

First published (updated )

CVE-2024-9471

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Local Windows User Can Disable the Agent

5.7

EPSS

0.04%

First published (updated )

CVE-2024-9469

Never miss a vulnerability like this again

Paloaltonetworks ExpeditionExpedition: Reflected Cross-Site Scripting Vulnerability Leads to Expedition Session Disclosure

EPSS

0.05%

First published (updated )

CVE-2024-9467

Paloaltonetworks ExpeditionExpedition: Cleartext Storage of Information Leads to Firewall Admin Credential Disclosure

8.2

EPSS

0.05%

First published (updated )

CVE-2024-9466

Paloaltonetworks ExpeditionPalo Alto Networks Expedition SQL Injection Vulnerability

9.2

EPSS

94.95%

First published (updated )

CVE-2024-9465

Paloaltonetworks ExpeditionExpedition: Authenticated OS Command Injection Vulnerability Leads to Firewall Admin Credential Disclosure

9.3

EPSS

0.05%

First published (updated )

CVE-2024-9464

Paloaltonetworks ExpeditionPalo Alto Networks Expedition OS Command Injection Vulnerability

9.9

EPSS

96.23%

First published (updated )

CVE-2024-9463

Never miss a vulnerability like this again

Paloaltonetworks Pan-osPAN-OS: User Impersonation in GlobalProtect Portal

7.1

EPSS

0.05%

First published (updated )

CVE-2024-8691

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Local Windows Administrator Can Disable the Agent

5.6

EPSS

0.04%

First published (updated )

CVE-2024-8690

Paloaltonetworks Pan-osPAN-OS: Arbitrary File Read Vulnerability in the Command Line Interface (CLI)

6.7

EPSS

0.04%

First published (updated )

CVE-2024-8688

Paloaltonetworks Pan-osPAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes

7.1

EPSS

0.04%

First published (updated )

CVE-2024-8687

Paloaltonetworks Pan-osPAN-OS: Command Injection Vulnerability

8.6

EPSS

0.05%

First published (updated )

CVE-2024-8686

Never miss a vulnerability like this again

Paloaltonetworks Pan-osPAN-OS: Cleartext Exposure of External System Secrets

First published (updated )

CVE-2024-5916

Paloaltonetworks GlobalprotectGlobalProtect App: Local Privilege Escalation (PE) Vulnerability

7.8

First published (updated )

CVE-2024-5915

Paloaltonetworks Cortex Xsoar CommonscriptsCortex XSOAR: Command Injection in CommonScripts Pack

9.8

First published (updated )

CVE-2024-5914

Paloaltonetworks ExpeditionPalo Alto Expedition Missing Authentication Vulnerability

9.8

EPSS

0.04%

First published (updated )

CVE-2024-5910

Paloaltonetworks Cortex Xdr Agent WindowsCortex XDR Agent: Local Windows User Can Disable the Agent

6.8

EPSS

0.04%

First published (updated )

CVE-2024-5909

Never miss a vulnerability like this again

Paloaltonetworks GlobalprotectGlobalProtect App: Encrypted Credential Exposure via Log Files

7.5

EPSS

0.09%

First published (updated )

CVE-2024-5908

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Local Privilege Escalation (PE) Vulnerability

EPSS

0.04%

First published (updated )

CVE-2024-5907

Paloaltonetworks Prisma CloudPrisma Cloud Compute: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface

4.8

EPSS

0.04%

First published (updated )

CVE-2024-5906

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Local Windows User Can Disrupt Functionality of the Agent

4.4

EPSS

0.04%

First published (updated )

CVE-2024-5905

Paloaltonetworks Pan-osPAN-OS: OS Command Injection Vulnerability in GlobalProtect

EPSS

95.36%

First published (updated )

CVE-2024-3400

Never miss a vulnerability like this again

Paloaltonetworks Pan-osPAN-OS: XML API Keys Revoked by Read-Only PAN-OS Administrator

low

2.7

EPSS

0.04%

First published (updated )

CVE-2023-6793

Paloaltonetworks Pan-osPAN-OS: Plaintext Disclosure of External System Integration Credentials

4.9

EPSS

0.05%

First published (updated )

CVE-2023-6791

Paloaltonetworks Pan-osPAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface

4.8

EPSS

0.04%

First published (updated )

CVE-2023-6789

Paloaltonetworks Pan-osPAN-OS: OS Command Injection Vulnerability in the Web Interface

5.5

EPSS

0.05%

First published (updated )

CVE-2023-6795

Paloaltonetworks Pan-osPAN-OS: File Upload Vulnerability in the Web Interface

5.5

EPSS

0.05%

First published (updated )

CVE-2023-6794

Never miss a vulnerability like this again

Paloaltonetworks Pan-osPAN-OS: OS Command Injection Vulnerability in the XML API

6.3

EPSS

0.05%

First published (updated )

CVE-2023-6792

Paloaltonetworks Pan-osPAN-OS: DOM-Based Cross-Site Scripting (XSS) Vulnerability in the Web Interface

8.8

EPSS

0.06%

First published (updated )

CVE-2023-6790

Paloaltonetworks Cortex XsoarCortex XSOAR: Local Privilege Escalation (PE) Vulnerability in Cortex XSOAR Engine

6.7

First published (updated )

CVE-2023-3282

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Local Windows User Can Disable the Agent

5.5

First published (updated )

CVE-2023-3280

Paloaltonetworks Pan-osPAN-OS: Read System Files and Resources During Configuration Commit

5.5

First published (updated )

CVE-2023-38046

Never miss a vulnerability like this again

Paloaltonetworks GlobalprotectGlobalProtect App: Local Privilege Escalation (PE) Vulnerability

7.8

First published (updated )

CVE-2023-0009

Paloaltonetworks Pan-osPAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication

5.4

First published (updated )

CVE-2023-0010

Paloaltonetworks Pan-osPAN-OS: Local File Disclosure Vulnerability in the PAN-OS Web Interface

4.4

First published (updated )

CVE-2023-0008

Paloaltonetworks Pan-osPAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface

6.5

First published (updated )

CVE-2023-0007

Paloaltonetworks GlobalprotectGlobalProtect App: Local File Deletion Vulnerability

6.3

First published (updated )

CVE-2023-0006

Never miss a vulnerability like this again

Paloaltonetworks Pan-osPAN-OS: Exposure of Sensitive Information Vulnerability

4.9

First published (updated )

CVE-2023-0005

Paloaltonetworks Pan-osPAN-OS: Local File Deletion Vulnerability

6.5

First published (updated )

CVE-2023-0004

Paloaltonetworks Cortex XsoarCortex XSOAR: Local File Disclosure Vulnerability in the Cortex XSOAR Server

6.5

First published (updated )

CVE-2023-0003

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Product Disruption by Local Windows User

7.8

First published (updated )

CVE-2023-0002

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Cleartext Exposure of Agent Admin Password

6.7

First published (updated )

CVE-2023-0001

Never miss a vulnerability like this again

Paloaltonetworks Cortex XsoarCortex XSOAR: Local Privilege Escalation (PE) Vulnerability in Cortex XSOAR Engine

6.7

First published (updated )

CVE-2022-0031

Paloaltonetworks Pan-osPAN-OS: Authentication Bypass in Web Interface

8.1

First published (updated )

CVE-2022-0030

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Improper Link Resolution Vulnerability When Generating a Tech Support File

5.5

First published (updated )

CVE-2022-0029

Paloaltonetworks Pan-osPalo Alto Networks PAN-OS Reflected Amplification Denial-of-Service Vulnerability

8.6

First published (updated )

CVE-2022-0028

Paloaltonetworks Cortex XsoarCortex XSOAR: Incorrect Authorization Vulnerability When Generating Reports

4.3

First published (updated )

CVE-2022-0027

Never miss a vulnerability like this again