Filters

Software

paloaltonetworks pan-os
45
paloaltonetworks globalprotect
12
paloaltonetworks cortex xdr agent
10
paloaltonetworks expedition
3
paloaltonetworks bridgecrew checkov
2
paloaltonetworks secdo
2
paloaltonetworks terminal services agent
2
paloaltonetworks traps
2
paloaltonetworks cortex xsoar
1
paloaltonetworks expedition migration tool
1
paloaltonetworks prisma access
1
paloaltonetworks prisma cloud
1
paloaltonetworks twistlock
1
paloaltonetworks vm-series firewall
1

Paloaltonetworks GlobalprotectGlobalProtect App: Local Privilege Escalation (PE) Vulnerability

high
7.8
EPSS
0.04%
First published (updated )
CVE-2024-9473

Paloaltonetworks ExpeditionExpedition: Reflected Cross-Site Scripting Vulnerability Leads to Expedition Session Disclosure

high
7
EPSS
0.05%
First published (updated )
CVE-2024-9467

Paloaltonetworks ExpeditionExpedition: Cleartext Storage of Information Leads to Firewall Admin Credential Disclosure

high
8.2
EPSS
0.05%
First published (updated )
CVE-2024-9466

Paloaltonetworks Pan-osPAN-OS: User Impersonation in GlobalProtect Portal

high
7.1
EPSS
0.05%
First published (updated )
CVE-2024-8691

Paloaltonetworks Pan-osPAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes

high
7.1
EPSS
0.04%
First published (updated )
CVE-2024-8687

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks Pan-osPAN-OS: Command Injection Vulnerability

high
8.6
EPSS
0.05%
First published (updated )
CVE-2024-8686

Paloaltonetworks GlobalprotectGlobalProtect App: Local Privilege Escalation (PE) Vulnerability

high
7.8
First published (updated )
CVE-2024-5915

Paloaltonetworks GlobalprotectGlobalProtect App: Encrypted Credential Exposure via Log Files

high
7.5
EPSS
0.09%
First published (updated )
CVE-2024-5908

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Local Privilege Escalation (PE) Vulnerability

high
7
EPSS
0.04%
First published (updated )
CVE-2024-5907

Paloaltonetworks Pan-osPAN-OS: DOM-Based Cross-Site Scripting (XSS) Vulnerability in the Web Interface

high
8.8
EPSS
0.06%
First published (updated )
CVE-2023-6790

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks GlobalprotectGlobalProtect App: Local Privilege Escalation (PE) Vulnerability

high
7.8
First published (updated )
CVE-2023-0009

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Product Disruption by Local Windows User

high
7.8
First published (updated )
CVE-2023-0002

Paloaltonetworks Pan-osPAN-OS: Authentication Bypass in Web Interface

high
8.1
First published (updated )
CVE-2022-0030

Paloaltonetworks Pan-osPalo Alto Networks PAN-OS Reflected Amplification Denial-of-Service Vulnerability

high
8.6
Exploited
First published (updated )
CVE-2022-0028

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Unintended Program Execution Leads to Local Privilege Escalation (PE) Vulnerability

high
7.2
First published (updated )
CVE-2022-0026

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: An Uncontrolled Search Path Element Leads to Local Privilege Escalation (PE) Vulnerability

high
7.2
First published (updated )
CVE-2022-0025

Paloaltonetworks GlobalprotectGlobalProtect App: Improper Link Resolution Vulnerability Leads to Local Privilege Escalation

high
7.8
First published (updated )
CVE-2022-0017

Paloaltonetworks GlobalprotectGlobalProtect App: Privilege Escalation Vulnerability When Using Connect Before Logon

high
7.8
First published (updated )
CVE-2022-0016

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: An Uncontrolled Search Path Element Leads to Local Privilege Escalation (PE) Vulnerability

high
7.8
First published (updated )
CVE-2022-0015

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Local Arbitrary File Deletion Vulnerability

high
7.1
First published (updated )
CVE-2022-0012

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Unintended Program Execution When Using Live Terminal Session

high
7.3
First published (updated )
CVE-2022-0014

Paloaltonetworks Pan-osPAN-OS: Improper Access Control Vulnerability Exposing AWS Instance Metadata Endpoint to GlobalProtect Users

high
8.8
First published (updated )
CVE-2021-3062

Paloaltonetworks Pan-osPAN-OS: OS Command Injection Vulnerability When Performing Dynamic Updates

high
8.1
First published (updated )
CVE-2021-3059

Paloaltonetworks Pan-osPAN-OS: Memory Corruption Vulnerability in GlobalProtect Clientless VPN During SAML Authentication

high
8.8
First published (updated )
CVE-2021-3056

Paloaltonetworks Pan-osPAN-OS: Denial-of-Service (DoS) Vulnerability in GlobalProtect Portal and Gateway Interfaces

high
7.5
First published (updated )
CVE-2021-3063

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks Pan-osPAN-OS: XML External Entity (XXE) Reference Vulnerability in the PAN-OS Web Interface

high
7.5
First published (updated )
CVE-2021-3055

Paloaltonetworks Pan-osPAN-OS: Exceptional Condition Denial-of-Service (DoS)

high
7.5
First published (updated )
CVE-2021-3053

Paloaltonetworks Pan-osPAN-OS: Reflected Cross-Site Scripting (XSS) in Web Interface

high
8
First published (updated )
CVE-2021-3052

Paloaltonetworks Cortex XsoarCortex XSOAR: Authentication Bypass in SAML Authentication

high
8.1
First published (updated )
CVE-2021-3051

Paloaltonetworks Pan-osPAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability

high
8.5
First published (updated )
CVE-2021-3054

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks Prisma CloudPrisma Cloud: Cross-Site Scripting (XSS) Vulnerability in Prisma Cloud Compute Web Console

high
7.5
First published (updated )
CVE-2021-3043

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Improper Control of User-Controlled File Leads to Local Privilege Escalation

high
7.8
First published (updated )
CVE-2021-3042

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Improper control of user-controlled file leads to local privilege escalation

high
7.8
First published (updated )
CVE-2021-3041

Paloaltonetworks Bridgecrew CheckovBridgecrew Checkov: Unsafe deserialization of Terraform files allows code execution

high
7.2
First published (updated )
CVE-2021-3040

Paloaltonetworks Bridgecrew CheckovBridgecrew Checkov: Unsafe deserialization of Terraform files allows code execution

high
7.2
First published (updated )
CVE-2021-3035

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks Cortex Xdr AgentCortex XDR Agent: Improper control of loaded DLL leads to local privilege escalation

high
7.8
First published (updated )
CVE-2020-2049

Paloaltonetworks Pan-osPAN-OS: Authentication bypass vulnerability in GlobalProtect SSL VPN client certificate verification

high
8.2
First published (updated )
CVE-2020-2050

Paloaltonetworks Pan-osPAN-OS: Panorama session disclosure during context switch into managed device

high
7.5
First published (updated )
CVE-2020-2022

Paloaltonetworks Pan-osPAN-OS: Reflected Cross-Site Scripting (XSS) vulnerability in management web interface

high
8.8
First published (updated )
CVE-2020-2036

Paloaltonetworks Pan-osPAN-OS: Management web interface denial-of-service (DoS)

high
7.8
First published (updated )
CVE-2020-2041

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks GlobalprotectGlobalProtect App: File race condition vulnerability leads to local privilege escalation during upgrade

high
7
First published (updated )
CVE-2020-2032

Paloaltonetworks Pan-osPAN-OS: Panorama registration denial of service

high
7.8
First published (updated )
CVE-2020-2011

Paloaltonetworks Pan-osPAN-OS: GlobalProtect Clientless VPN session hijacking

high
7.1
First published (updated )
CVE-2020-2005

Paloaltonetworks Pan-osPAN-OS: Authenticated administrator can delete arbitrary system file

high
8.5
First published (updated )
CVE-2020-2003

Paloaltonetworks Pan-osPAN-OS: Spoofed Kerberos key distribution center authentication bypass

high
8.1
First published (updated )
CVE-2020-2002

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paloaltonetworks Pan-osPAN-OS: DOM-Based cross site scripting vulnerability in management web interface

high
8.8
First published (updated )
CVE-2020-2017

Paloaltonetworks Pan-osPAN-OS: Panorama context switch session cookie disclosure

high
8.8
First published (updated )
CVE-2020-2013

Paloaltonetworks Pan-osPAN-OS: Improper SAML SSO authorization of shared local users

high
8.8
First published (updated )
CVE-2020-1998

Paloaltonetworks Pan-osPAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak

high
7.5
First published (updated )
CVE-2020-2012

Paloaltonetworks Pan-osPAN-OS: Temporary file race condition vulnerability in PAN-OS leads to local privilege escalation

high
8.5
First published (updated )
CVE-2020-2016

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203