CVSS Summary Versions Affected Unaffected Published Updated 4.9 CVE-2025-0113
Cortex XDR Broker VM: Unauthorized Access to Broker VM Docker Containers 2025-02-12 2025-02-12 i PAN-SA-2025-0006
Informational Bulletin: Impact of OSS CVEs in PAN-OS 2025-02-12 2025-02-12 i PAN-SA-2025-0005
GlobalProtect Clientless VPN: Clientless VPN Misconfiguration Allows Cross-Site Attacks Cloud NGFW
PAN-OS
Prisma Access
2025-02-12 2025-02-12 6.1 PAN-SA-2025-0004
Chromium: Monthly Vulnerability Update (February 2025) 2025-02-12 2025-02-12 6.6 CVE-2024-1135
Impact of CVE-2024-1135 2025-02-12 2025-02-12 4.3 CVE-2025-0112
Cortex XDR Agent: Local Windows User Can Disable the Agent Cortex XDR Agent 8.6
Cortex XDR Agent 8.5
Cortex XDR Agent 8.4
Cortex XDR Agent 8.3-CE
None on Windows
< 8.5.1 on Windows
All on Windows *
< 8.3.101-CE on Windows
All on Windows
>= 8.5.1 on Windows
None on Windows *
>= 8.3.101-CE on Windows
2025-02-12 2025-02-12 4.9 CVE-2025-0111
PAN-OS: Authenticated File Read Vulnerability in the Management Web Interface Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.4-h4
< 11.1.6-h1
< 10.2.7-h24, < 10.2.8-h21, < 10.2.9-h21, < 10.2.12-h6, < 10.2.13-h3
< 10.1.14-h9
None
All
>= 11.2.4-h4
>= 11.1.6-h1
>= 10.2.7-h24, >= 10.2.8-h21, >= 10.2.9-h21, >= 10.2.12-h6, >= 10.2.13-h3
>= 10.1.14-h9
All
2025-02-12 2025-02-18 7.3 CVE-2025-0110
PAN-OS OpenConfig Plugin: Command Injection Vulnerability in OpenConfig Plugin 2025-02-12 2025-02-12 5.5 CVE-2025-0109
PAN-OS: Unauthenticated File Deletion Vulnerability on the Management Web Interface Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.4-h4
< 11.1.6-h1
< 10.2.7-h24, < 10.2.8-h21, < 10.2.9-h21, < 10.2.12-h6, < 10.2.13-h3
< 10.1.14-h9
None
All
>= 11.2.4-h4
>= 11.1.6-h1
>= 10.2.7-h24, >= 10.2.8-h21, >= 10.2.9-h21, >= 10.2.12-h6, >= 10.2.13-h3
>= 10.1.14-h9
All
2025-02-12 2025-02-18 8.8 CVE-2025-0108
PAN-OS: Authentication Bypass in the Management Web Interface Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.4-h4
< 11.1.6-h1
< 10.2.7-h24, < 10.2.8-h21, < 10.2.9-h21, < 10.2.12-h6, < 10.2.13-h3
< 10.1.14-h9
None
All
>= 11.2.4-h4
>= 11.1.6-h1
>= 10.2.7-h24, >= 10.2.8-h21, >= 10.2.9-h21, >= 10.2.12-h6, >= 10.2.13-h3
>= 10.1.14-h9
All
2025-02-12 2025-02-18 i PAN-SA-2025-0003
Informational: PAN-OS BIOS and Bootloader Security Bulletin Cloud NGFW
PAN-OS CN-Series
PAN-OS PA-Series
PAN-OS VM-Series
Prisma Access
None
None
As listed in the CVE table above
None
None
All
All
All others not listed in the CVE table above
All
All
2025-01-23 2025-01-27 6.1 PAN-SA-2025-0002
Chromium: Monthly Vulnerability Updates 2025-01-08 2025-01-08 7.8 PAN-SA-2025-0001
Expedition: Multiple Vulnerabilities in Expedition Migration Tool Lead to Exposure of Firewall Credentials Cloud NGFW
Expedition 1
Panorama
PAN-OS
Prisma Access
None
< 1.2.101
None
None
None
2025-01-08 2025-01-15 8.7 CVE-2024-3393
PAN-OS: Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet Cloud NGFW
PAN-OS
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
Prisma Access
None
None on Panorama
< 11.2.3
< 11.1.2-h16, < 11.1.3-h13, < 11.1.4-h7, < 11.1.5
>= 10.2.8, < 10.2.8-h19, < 10.2.9-h19, < 10.2.10-h12, < 10.2.11-h10, < 10.2.12-h4, < 10.2.13-h2, < 10.2.14
>= 10.1.14, < 10.1.14-h8, < 10.1.15
None
None
>= 10.2.8 on PAN-OS, < 10.2.9-h19 on PAN-OS, < 10.2.10-h12 on PAN-OS, < 11.2.3 on PAN-OS
All
All on Panorama
>= 11.2.3
>= 11.1.2-h16, >= 11.1.3-h13, >= 11.1.4-h7, >= 11.1.5
< 10.2.8, >= 10.2.8-h19, >= 10.2.9-h19, >= 10.2.10-h12, >= 10.2.11-h10, >= 10.2.12-h4, >= 10.2.13-h2, >= 10.2.14
< 10.1.14, >= 10.1.14-h8, >= 10.1.15
All
All
< 10.2.8 on PAN-OS, >= 10.2.9-h19 on PAN-OS, >= 10.2.10-h12 on PAN-OS, >= 11.2.3 on PAN-OS
2024-12-27 2025-01-30 6.1 PAN-SA-2024-0017
Chromium: Monthly Vulnerability Updates 2024-12-11 2024-12-11 5.6 CVE-2024-5921
GlobalProtect App: Insufficient Certificate Validation Leads to Privilege Escalation GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect App 5.1
< 6.3.2* on Windows, < 6.3.2* on macOS
< 6.2.6* on Windows, < 6.2.6-c857* on macOS, < 6.2.1-HF2* on Linux, < 6.2.6* on Windows UWP
All on Windows, All on macOS, All on Linux, < 6.1.6* on Android, < 6.1.7* on iOS
None on FIPS-CC mode
None on FIPS-CC mode
>= 6.3.2* on Windows, >= 6.3.2* on macOS
>= 6.2.6* on Windows, >= 6.2.6-c857* on macOS, >= 6.2.1-HF2* on Linux (ETA: middle of Feb), >= 6.2.6* on Windows UWP (ETA: end of Feb)
None on Windows, None on macOS, None on Linux, >= 6.1.6* on Android (ETA: middle of Feb), >= 6.1.7* on iOS (ETA: middle of Feb)
All on FIPS-CC mode
All on FIPS-CC mode
2024-11-26 2025-02-05 9.3 CVE-2024-0012
PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.1-h1, < 11.2.2-h2, < 11.2.3-h3, < 11.2.4-h1
< 11.1.0-h4, < 11.1.1-h2, < 11.1.2-h15, < 11.1.3-h11, < 11.1.4-h7, < 11.1.5-h1
< 11.0.0-h4, < 11.0.1-h5, < 11.0.2-h5, < 11.0.3-h13, < 11.0.4-h6, < 11.0.5-h2, < 11.0.6-h1
< 10.2.0-h4, < 10.2.1-h3, < 10.2.2-h6, < 10.2.3-h14, < 10.2.4-h32, < 10.2.5-h9, < 10.2.6-h6, < 10.2.7-h18, < 10.2.8-h15, < 10.2.9-h16, < 10.2.10-h9, < 10.2.11-h6, < 10.2.12-h2 , < 10.2.12-h2
None
None
All
>= 11.2.1-h1, >= 11.2.2-h2, >= 11.2.3-h3, >= 11.2.4-h1
>= 11.1.0-h4, >= 11.1.1-h2, >= 11.1.2-h15, >= 11.1.3-h11, >= 11.1.4-h7, >= 11.1.5-h1
>= 11.0.0-h4, >= 11.0.1-h5, >= 11.0.2-h5, >= 11.0.3-h13, >= 11.0.4-h6, >= 11.0.5-h2, >= 11.0.6-h1
>= 10.2.0-h4, >= 10.2.1-h3, >= 10.2.2-h6, >= 10.2.3-h14, >= 10.2.4-h32, >= 10.2.5-h9, >= 10.2.6-h6, >= 10.2.7-h18, >= 10.2.8-h15, >= 10.2.9-h16, >= 10.2.10-h9, >= 10.2.11-h6, >= 10.2.12-h2 , >= 10.2.12-h2
All
All
2024-11-18 2024-11-23 6.9 CVE-2024-9474
PAN-OS: Privilege Escalation (PE) Vulnerability in the Web Management Interface Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.0-h1, < 11.2.1-h1, < 11.2.2-h2, < 11.2.3-h3, < 11.2.4-h1
< 11.1.0-h4, < 11.1.1-h2, < 11.1.2-h15, < 11.1.3-h11, < 11.1.4-h7, < 11.1.5-h1
< 11.0.0-h4, < 11.0.1-h5, < 11.0.2-h5, < 11.0.3-h13, < 11.0.4-h6, < 11.0.5-h2, < 11.0.6-h1
< 10.2.0-h4, < 10.2.1-h3, < 10.2.2-h6, < 10.2.3-h14, < 10.2.4-h32, < 10.2.5-h9, < 10.2.6-h6, < 10.2.7-h18, < 10.2.8-h15, < 10.2.9-h16, < 10.2.10-h9, < 10.2.11-h6, < 10.2.12-h2
< 10.1.3-h4, < 10.1.6-h9, < 10.1.8-h8, < 10.1.9-h14, < 10.1.10-h9, < 10.1.11-h10, < 10.1.12-h3, < 10.1.13-h5, < 10.1.14-h6
None
All
>= 11.2.0-h1, >= 11.2.1-h1, >= 11.2.2-h2, >= 11.2.3-h3, >= 11.2.4-h1
>= 11.1.0-h4, >= 11.1.1-h2, >= 11.1.2-h15, >= 11.1.3-h11, >= 11.1.4-h7, >= 11.1.5-h1
>= 11.0.0-h4, >= 11.0.1-h5, >= 11.0.2-h5, >= 11.0.3-h13, >= 11.0.4-h6, >= 11.0.5-h2, >= 11.0.6-h1
>= 10.2.0-h4, >= 10.2.1-h3, >= 10.2.2-h6, >= 10.2.3-h14, >= 10.2.4-h32, >= 10.2.5-h9, >= 10.2.6-h6, >= 10.2.7-h18, >= 10.2.8-h15, >= 10.2.9-h16, >= 10.2.10-h9, >= 10.2.11-h6, >= 10.2.12-h2
>= 10.1.3-h4, >= 10.1.6-h9, >= 10.1.8-h8, >= 10.1.9-h14, >= 10.1.10-h9, >= 10.1.11-h10, >= 10.1.12-h3, >= 10.1.13-h5, >= 10.1.14-h6
All
2024-11-18 2024-11-21 8.6 PAN-SA-2024-0016
Chromium: Monthly Vulnerability Updates 2024-11-13 2024-11-13 1 CVE-2024-5920
PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in PAN-OS Enables Impersonation of a Legitimate Administrator Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
< 11.1.4
< 11.0.6
< 10.2.11
< 10.1.14
None
All
All
>= 11.1.4
>= 11.0.6
>= 10.2.11
>= 10.1.14
All
2024-11-13 2024-11-13 1.3 CVE-2024-5918
PAN-OS: Improper Certificate Validation Enables Impersonation of a Legitimate GlobalProtect User Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
None
< 11.0.3
< 10.2.4-h5
< 10.1.11
None
All
All
All
>= 11.0.3
>= 10.2.4-h5
>= 10.1.11
All
2024-11-13 2024-11-13 1.2 CVE-2024-5919
PAN-OS: Authenticated XML External Entities (XXE) Injection Vulnerability Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
None
< 11.0.2
< 10.2.5
< 10.1.10
None
All
All
All
>= 11.0.2
>= 10.2.5
>= 10.1.10
All
2024-11-13 2024-11-13 6.6 CVE-2024-2550
PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway Using a Specially Crafted Packet Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
< 11.1.4-h9, < 11.1.5
< 11.0.6
< 10.2.7-h21, < 10.2.8-h18, < 10.2.9-h18, < 10.2.10-h10, < 10.2.11
None
None
All
All
>= 11.1.4-h9, >= 11.1.5
>= 11.0.6
>= 10.2.7-h21, >= 10.2.8-h18, >= 10.2.9-h18, >= 10.2.10-h10, >= 10.2.11
All
All
2024-11-13 2025-01-06 4.3 CVE-2024-2552
PAN-OS: Arbitrary File Delete Vulnerability in the Command Line Interface (CLI) Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.4
< 11.1.4-h9, < 11.1.5
< 11.0.6
< 10.2.7-h21, < 10.2.8-h18, < 10.2.9-h18, < 10.2.10-h10, < 10.2.11-h9, < 10.2.12
None
None
All
>= 11.2.4
>= 11.1.4-h9, >= 11.1.5
>= 11.0.6
>= 10.2.7-h21, >= 10.2.8-h18, >= 10.2.9-h18, >= 10.2.10-h10, >= 10.2.11-h9, >= 10.2.12
All
All
2024-11-13 2025-01-06 6.6 CVE-2024-9472
PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Traffic Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.2-h3, < 11.2.3
< 11.1.2-h14, < 11.1.3-h10
None
< 10.2.7-h16, < 10.2.8-h13, < 10.2.9-h14, < 10.2.10-h7, < 10.2.11-h4
None
None
All
>= 11.2.2-h3, >= 11.2.3
>= 11.1.2-h14, >= 11.1.3-h10
All
>= 10.2.7-h16, >= 10.2.8-h13, >= 10.2.9-h14, >= 10.2.10-h7, >= 10.2.11-h4
All
All
2024-11-13 2024-11-13