Palo Alto Networks Security Advisories

1 - 25 of 286
VersionsAffectedUnaffected
7.8CVE-2022-0015 Cortex XDR Agent: An Uncontrolled Search Path Element Leads to Local Privilege Escalation (PE) Vulnerability
Cortex XDR Agent 7.6
Cortex XDR Agent 7.5
Cortex XDR Agent 7.4
Cortex XDR Agent 7.3
Cortex XDR Agent 7.2
Cortex XDR Agent 6.1
Cortex XDR Agent 5.0
none
none
none
none
none
< 6.1.9
< 5.0.12
7.6.*
7.5.*
7.4.*
7.3.*
7.2.*
>= 6.1.9
>= 5.0.12
2022-01-122022-01-12
6.7CVE-2022-0014 Cortex XDR Agent: Unintended Program Execution When Using Live Terminal Session
Cortex XDR Agent 7.6
Cortex XDR Agent 7.5
Cortex XDR Agent 7.4
Cortex XDR Agent 7.3
Cortex XDR Agent 7.2
Cortex XDR Agent 6.1
Cortex XDR Agent 5.0
none
none
none
< 7.3.2 on Windows
< 7.2.4 on Windows
< 6.1.9 on Windows
< 5.0.12 on Windows
7.6.*
7.5.*
7.4.*
>= 7.3.2 on Windows
>= 7.2.4 on Windows
>= 6.1.9 on Windows
>= 5.0.12 on Windows
2022-01-122022-01-14
6.1CVE-2022-0012 Cortex XDR Agent: Local Arbitrary File Deletion Vulnerability
Cortex XDR Agent 7.6
Cortex XDR Agent 7.5
Cortex XDR Agent 7.4
Cortex XDR Agent 7.3
Cortex XDR Agent 7.2
Cortex XDR Agent 6.1
Cortex XDR Agent 5.0
none
none
none
< 7.3.2 on Windows
< 7.2.4 on Windows
< 6.1.9 on Windows
< 5.0.12 on Windows
7.6.*
7.5.*
7.4.*
>= 7.3.2 on Windows
>= 7.2.4 on Windows
>= 6.1.9 on Windows
>= 5.0.12 on Windows
2022-01-122022-01-14
5CVE-2022-0013 Cortex XDR Agent: File Information Exposure Vulnerability When Generating Support File
Cortex XDR Agent 7.5
Cortex XDR Agent 7.4
Cortex XDR Agent 7.3
Cortex XDR Agent 7.2
Cortex XDR Agent 6.1
Cortex XDR Agent 5.0
none
none
< 7.3.2 on Windows
< 7.2.4 on Windows
< 6.1.9 on Windows
< 5.0.12 on Windows
7.5.*
7.4.*
>= 7.3.2 on Windows
>= 7.2.4 on Windows
>= 6.1.9 on Windows
>= 5.0.12 on Windows
2022-01-122022-01-14
9.8 NCVE-2021-44228 Impact of Log4j Vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832
Bridgecrew
Cortex Data Lake
Cortex XDR Agent
Cortex Xpanse
Cortex XSOAR
Enterprise Data Loss Prevention
Exact Data Matching CLI
Expedition
GlobalProtect App
IoT Security
Okyo Garde
PAN-DB Private Cloud
PAN-OS for Firewall and Wildfire
PAN-OS for Panorama
Prisma Access
Prisma Cloud
Prisma Cloud Compute
Prisma SD-WAN (CloudGenix)
SaaS Security
Traps
User-ID Agent
WildFire Appliance
WildFire Cloud
none
none
none
none
none
none
< 1.2
none
none
none
none
none
none
< 9.0.15, < 10.0.8-h8, < 9.1.12-h3
none
none
none
none
none
none
none
none
none
all
all
all
all
all
all
>= 1.2
all
all
all
all
all
all
8.1.*, 10.1.*, >= 9.0.15, >= 10.0.8-h8, >= 9.1.12-h3
all
all
all
all
all
all
all
all
all
2021-12-102022-01-12
0CVE-2021-41617 Informational: Impact of the OpenSSH Vulnerability CVE-2021-41617 on PAN-OS
PAN-OS
none
all
2021-11-302021-11-30
9.8 NCVE-2021-3064 PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
none
none
none
none
< 8.1.17
none
none
10.1.*
10.0.*
9.1.*
9.0.*
>= 8.1.17
all
all
2021-11-102021-11-10
8.8CVE-2021-3056 PAN-OS: Memory Corruption Vulnerability in GlobalProtect Clientless VPN During SAML Authentication
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
none
< 10.0.1
< 9.1.9
< 9.0.14
< 8.1.20
none
Preferred
10.1.*
>= 10.0.1
>= 9.1.9
>= 9.0.14
>= 8.1.20
all
Innovation
2021-11-102021-11-10
8.8CVE-2021-3058 PAN-OS: OS Command Injection Vulnerability in Web Interface XML API
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
< 10.1.3
< 10.0.8
< 9.1.11-h2
< 9.0.14-h3
< 8.1.20-h1
none
none
>= 10.1.3
>= 10.0.8
>= 9.1.11-h2
>= 9.0.14-h3
>= 8.1.20-h1
all
all
2021-11-102021-11-10
8.1CVE-2021-3060 PAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP)
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
< 10.1.3
< 10.0.8
< 9.1.11-h2
< 9.0.14-h3
< 8.1.20-h1
none
Preferred, Innovation
>= 10.1.3
>= 10.0.8
>= 9.1.11-h2
>= 9.0.14-h3
>= 8.1.20-h1
all
none
2021-11-102021-11-10
8.1CVE-2021-3059 PAN-OS: OS Command Injection Vulnerability When Performing Dynamic Updates
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
< 10.1.3
< 10.0.8
< 9.1.11-h2
< 9.0.14-h3
< 8.1.20-h1
none
none
>= 10.1.3
>= 10.0.8
>= 9.1.11-h2
>= 9.0.14-h3
>= 8.1.20-h1
all
all
2021-11-102021-11-17
8.1CVE-2021-3062 PAN-OS: Improper Access Control Vulnerability Exposing AWS Instance Metadata Endpoint to GlobalProtect Users
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
none
< 10.0.8 on VM-Series
< 9.1.11 on VM-Series
< 9.0.14 on VM-Series
< 8.1.20 on VM-Series
none
none
10.1.* on VM-Series
>= 10.0.8 on VM-Series
>= 9.1.11 on VM-Series
>= 9.0.14 on VM-Series
>= 8.1.20 on VM-Series
all
all
2021-11-102021-11-17
7.5 NCVE-2021-3063 PAN-OS: Denial-of-Service (DoS) Vulnerability in GlobalProtect Portal and Gateway Interfaces
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
< 10.1.3
< 10.0.8-h4
< 9.1.11-h3
< 9.0.14-h4
< 8.1.21
none
none
>= 10.1.3
>= 10.0.8-h4
>= 9.1.11-h3
>= 9.0.14-h4
>= 8.1.21
all
all
2021-11-102021-12-09
6.4CVE-2021-3061 PAN-OS: OS Command Injection Vulnerability in the Command Line Interface (CLI)
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
< 10.1.3
< 10.0.8
< 9.1.11-h2
< 9.0.14-h3
< 8.1.20-h1
none
none
>= 10.1.3
>= 10.0.8
>= 9.1.11-h2
>= 9.0.14-h3
>= 8.1.20-h1
all
all
2021-11-102021-11-23
8.1CVE-2021-3057 GlobalProtect App: Buffer Overflow Vulnerability When Connecting to Portal or Gateway
GlobalProtect App 5.3
GlobalProtect App 5.2
GlobalProtect App 5.1
GlobalProtect App 5.0
< 5.3.1 on Linux
< 5.2.8 on Windows, Universal Windows Platform, Linux, MacOS
< 5.1.9 on Windows, Universal Windows Platform, Linux, MacOS
5.0.* on Windows, Universal Windows Platform, Linux, MacOS
>= 5.3.1 on Linux
>= 5.2.8 on Windows, Universal Windows Platform, MacOS
>= 5.1.9 on Windows, Universal Windows Platform, Linux, MacOS
none
2021-10-132021-11-23
3.7CVE-2020-1968 PAN-OS: Impact of the Raccoon Attack Vulnerability CVE-2020-1968
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
Prisma Access 2.2
Prisma Access 2.1
Prisma Access 2.0
none
none
9.1.*
9.0.*
8.1.*
none
Preferred
Preferred
10.1.*
10.0.*
none
none
none
Preferred
Innovation
Innovation
2021-10-132021-11-10
8.1CVE-2020-10188 PAN-OS: Impact of Telnet Remote-Code-Execution (RCE) Vulnerability (CVE-2020-10188)
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
none
< 10.0.6
< 9.1.9
< 9.0.14
< 8.1.20
10.1.*
>= 10.0.6
>= 9.1.9
>= 9.0.14
>= 8.1.20
2021-09-082021-09-08
8.1CVE-2021-3051 Cortex XSOAR: Authentication Bypass in SAML Authentication
Cortex XSOAR 6.2.0
Cortex XSOAR 6.1.0
Cortex XSOAR 5.5.0
< 1578666
< 1578663
< 1578677
>= 1578666
>= 1578663
>= 1578677
2021-09-082021-09-13
8CVE-2021-3052 PAN-OS: Reflected Cross-Site Scripting (XSS) in Web Interface
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
none
< 10.0.2
< 9.1.10
< 9.0.14
< 8.1.20
10.1.*
>= 10.0.2
>= 9.1.10
>= 9.0.14
>= 8.1.20
2021-09-082021-09-13
7.5 NCVE-2021-3053 PAN-OS: Exceptional Condition Denial-of-Service (DoS)
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
none
< 10.0.5
< 9.1.9
< 9.0.14
< 8.1.20
10.1.*
>= 10.0.5
>= 9.1.9
>= 9.0.14
>= 8.1.20
2021-09-082021-09-13
7.2CVE-2021-3054 PAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
< 10.1.2
< 10.0.7
< 9.1.11
< 9.0.14
< 8.1.20
>= 10.1.2
>= 10.0.7
>= 9.1.11
>= 9.0.14
>= 8.1.20
2021-09-082021-09-13
6.5CVE-2021-3055 PAN-OS: XML External Entity (XXE) Reference Vulnerability in the PAN-OS Web Interface
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
none
< 10.0.6
< 9.1.10
< 9.0.14
< 8.1.20
10.1.*
>= 10.0.6
>= 9.1.10
>= 9.0.14
>= 8.1.20
2021-09-082022-01-16
2.6CVE-2021-3049 Cortex XSOAR: Improper Authorization of Incident Investigations Vulnerability
Cortex XSOAR 6.2.0
Cortex XSOAR 6.1.0
Cortex XSOAR 5.5.0
none
< 12099345
all
all
>= 12099345
none
2021-09-082021-09-08
8.8CVE-2021-3050 PAN-OS: OS Command Injection Vulnerability in Web Interface
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
>= 10.1.0
>= 10.0.0
>= 9.1.4
>= 9.0.10
none
>= 10.1.2
>= 10.0.8
>= 9.1.11
>= 9.0.15
8.1.*
2021-08-112021-08-11
6.8CVE-2021-3046 PAN-OS: Improper SAML Authentication Vulnerability in GlobalProtect Portal
PAN-OS 10.1
PAN-OS 10.0
PAN-OS 9.1
PAN-OS 9.0
PAN-OS 8.1
none
< 10.0.5
< 9.1.9
< 9.0.14
< 8.1.19
10.1.*
>= 10.0.5
>= 9.1.9
>= 9.0.14
>= 8.1.19
2021-08-112021-08-11
1 - 25 of 286 Download
N = Exploitable over the network with low complexity, unauthenticated attack.
© 2020 Palo Alto Networks, Inc. All rights reserved.