Palo Alto Networks Security Advisories

1 - 25 of 472
VersionsAffectedUnaffected
iPAN-SA-2025-0012 Informational Bulletin: OSS CVEs Fixed in PAN-OS
PAN-OS
2025-07-092025-07-09
8.6PAN-SA-2025-0013 Chromium: Monthly Vulnerability Update (July 2025)
Prisma Access Browser
< 137.16.6.120
>= 138.33.5.97
2025-07-092025-07-09
2.4CVE-2025-0139 Autonomous Digital Experience Manager: Privilege Escalation (PE) Vulnerability
Autonomous Digital Experience Manager 5.6.0
< 5.6.7 on macOS
>= 5.6.7 on macOS
2025-07-092025-07-09
4.3CVE-2025-0140 GlobalProtect App: Non Admin User Can Disable the GlobalProtect App
GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect UWP App
None on Android, None on Chrome OS, None on iOS, None on Windows
< 6.3.3-h1 (6.3.3-c650) on macOS
< 6.2.8-h2 (6.2.8-c243) on macOS, < 6.2.8 on Linux
All on macOS, All on Linux
All on macOS, All on Linux
None
All on Android, All on Chrome OS, All on iOS, All on Windows
>= 6.3.3-h1 (6.3.3-c650) on macOS
>= 6.2.8-h2 (6.2.8-c243) on macOS, >= 6.2.8 on Linux (ETA: July 11, 2025)
None on macOS, None on Linux
None on macOS, None on Linux
All
2025-07-092025-07-09
5.7CVE-2025-0141 GlobalProtect App: Privilege Escalation (PE) Vulnerability
GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect UWP App
None on Android, None on Chrome OS, None on iOS
< 6.3.3-h1 (6.3.3-c650) on macOS, < 6.3.3-h1 (6.3.3-c650) on Windows
< 6.2.8-h2 (6.2.8-c243) on macOS, < 6.2.8-h2 (6.2.8-c243) on Windows, < 6.2.8 on Linux
All on macOS, All on Windows, All on Linux
All on macOS, All on Windows, All on Linux
None
All on Android, All on Chrome OS, All on iOS
>= 6.3.3-h1 (6.3.3-c650) on macOS, >= 6.3.3-h1 (6.3.3-c650) on Windows
>= 6.2.8-h2 (6.2.8-c243) on macOS, >= 6.2.8-h2 (6.2.8-c243) on Windows, >= 6.2.8 on Linux (ETA: July 11, 2025)
None on macOS, None on Windows, None on Linux
None on macOS, None on Windows, None on Linux
All
2025-07-092025-07-09
8.6PAN-SA-2025-0011 Chromium and Prisma Access Browser: Monthly Vulnerability Update (June 2025)
Prisma Access Browser
< 136.24.1.93
>= 137.16.2.69
2025-06-112025-06-11
7.1CVE-2025-4232 GlobalProtect: Authenticated Code Injection Through Wildcard on macOS
GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
None on Windows, Linux, Android, iOS, Chrome OS
< 6.3.3 on macOS
< 6.2.8-h2 [6.2.8-c243] on macOS
All on macOS
All on macOS
All on Windows, Linux, Android, iOS, Chrome OS
>= 6.3.3 on macOS
>= 6.2.8-h2 [6.2.8-c243] on macOS
None on macOS
None on macOS
2025-06-112025-06-23
6.1CVE-2025-4231 PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
None
< 11.0.3
< 10.2.8
All
None
All
All
All
>= 11.0.3
>= 10.2.8
None
All
2025-06-112025-06-11
5.7CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.6
< 11.1.6-h14, < 11.1.10
< 10.2.13-h7
< 10.1.14-h15
None
All
>= 11.2.6
>= 11.1.6-h14, >= 11.1.10
>= 10.2.13-h7
>= 10.1.14-h15
All
2025-06-112025-06-30
2.3CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.7
< 11.1.10
< 10.2.16-h1, < 10.2.17
< 10.1.14-h16
None
All
>= 11.2.7
>= 11.1.10
>= 10.2.16-h1 [ETA: June 2025], >= 10.2.17 [ETA: Aug 2025]
>= 10.1.14-h16 [ETA: July 2025]
All
2025-06-112025-06-30
1CVE-2025-4228 Cortex XDR Broker VM: Privilege Escalation (PE) Vulnerability
Cortex XDR Broker VM
< 27.0.26
>= 27.0.26
2025-06-112025-06-11
0.3CVE-2025-4227 GlobalProtect App: Interception in Endpoint Traffic Policy Enforcement
GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
None on Linux, Android, iOS, Chrome OS, UWP ¹
< 6.3.3-c650 on Windows, macOS
< 6.2.8-h2 [6.2.8-c243] on Windows, macOS
All on Windows, macOS
All on Windows, macOS
All on Linux, Android, iOS, Chrome OS, UWP ¹
>= 6.3.3-c650 on Windows, macOS
>= 6.2.8-h2 [6.2.8-c243] on Windows, macOS
None on Windows, macOS
None on Windows, macOS
2025-06-112025-06-13
7.6PAN-SA-2025-0009 Chromium: Monthly Vulnerability Update (May 2025)
Prisma Access Browser
< 135.16.8.96
>= 136.11.9.93
2025-05-142025-05-15
4.6CVE-2025-0130 PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted Packets
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.5
< 11.1.6-h1, < 11.1.7-h2, < 11.1.8
None
None
None
All
>= 11.2.5
>= 11.1.6-h1, >= 11.1.7-h2, >= 11.1.8
All
All
All
2025-05-142025-05-14
4CVE-2025-0131 GlobalProtect App: Incorrect Privilege Management Vulnerability in OPSWAT MetaDefender Endpoint Security SDK
MetaDefender Endpoint Security SDK 4.3.0
< 4.3.4451 on Windows
>= 4.3.4451 on Windows
2025-05-142025-05-14
2.7CVE-2025-0132 Cortex XDR Broker VM: Unauthenticated User Can Disable Internal Services
Cortex XDR Broker VM 26.0.0
< 26.0.119
>= 26.0.119
2025-05-142025-05-14
2CVE-2025-0133 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
All
< 11.2.4-h9, < 11.2.7
< 11.1.6-h14, < 11.1.10-h1
< 10.2.16-h1
All
All
None (See Mitigations and Workarounds)
>= 11.2.4-h9, >= 11.2.7
>= 11.1.6-h14, >= 11.1.10-h1
>= 10.2.16-h1
None
None (See Mitigations and Workarounds)
2025-05-142025-07-09
2.6CVE-2025-0134 Cortex XDR Broker VM: Authenticated Code Injection Vulnerability in Broker VM
Cortex XDR Broker VM 26.0.0
< 26.0.119
>= 26.0.119
2025-05-142025-05-14
1.9CVE-2025-0135 GlobalProtect App on macOS: Non Admin User Can Disable the GlobalProtect App
GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect UWP App
None on Android, None on Chrome OS, None on iOS, None on Windows, None on Linux
< 6.3.3 on macOS
< 6.2.8 on macOS
All on macOS
All on macOS
None
All on Android, All on Chrome OS, All on iOS, All on Windows, All on Linux
>= 6.3.3 on macOS
>= 6.2.8 on macOS
None on macOS
None on macOS
All
2025-05-142025-06-06
1.3CVE-2025-0136 PAN-OS: Unencrypted Data Transfer when using AES-128-CCM on Intel-based hardware devices
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
< 11.1.5
< 11.0.7
< 10.2.11
< 10.1.14-h14
None
All
All
>= 11.1.5
>= 11.0.7
>= 10.2.11
>= 10.1.14-h14
All
2025-05-142025-05-14
1.1CVE-2025-0137 PAN-OS: Improper Neutralization of Input in the Management Web Interface
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
None
< 11.2.5
< 11.1.6-h14, < 11.1.8
< 10.2.13
< 10.1.14-h14
All
>= 11.2.5
>= 11.1.6-h14, >= 11.1.8
>= 10.2.13
>= 10.1.14-h14
2025-05-142025-07-10
0.3CVE-2025-0138 Prisma Cloud Compute Edition: Insufficient Session Expiration Vulnerability in the Web Interface
Compute in Prisma Cloud Enterprise Edition
Prisma Cloud Compute Edition
None
< 34.01.129
All
>= 34.01.129
2025-05-142025-06-23
iPAN-SA-2025-0010 Informational Bulletin: No Impact of the Marvin Attack on PAN-OS
PAN-OS
None
All
2025-05-142025-05-14
4CVE-2025-0120 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect UWP App
None on macOS, None on Linux, None on iOS, None on Android, None on Chrome OS
< 6.3.3 on Windows
< 6.2.7-1077 on Windows, < 6.2.8 on Windows
All on Windows
< 6.0.12 on Windows
None
All on macOS, All on Linux, All on iOS, All on Android, All on Chrome OS
>= 6.3.3 on Windows
>= 6.2.7-1077 on Windows, >= 6.2.8 on Windows
None on Windows
>= 6.0.12 on Windows (ETA: May 2025)
All
2025-04-092025-05-02
4.3CVE-2025-0121 Cortex XDR Agent: Local Windows User Can Crash the Agent
Cortex XDR Agent 8.7
Cortex XDR Agent 8.6
Cortex XDR Agent 8.5
Cortex XDR Agent 8.3-CE
Cortex XDR Agent 7.9-CE
None on Windows
< 8.6.1 on Windows
< 8.5.2 on Windows
< 8.3.101-CE HF on Windows
< 7.9.103-CE HF on Windows
All on Windows
>= 8.6.1 on Windows
>= 8.5.2 on Windows
>= 8.3.101-CE HF on Windows
>= 7.9.103-CE HF on Windows
2025-04-092025-04-09
1 - 25 of 472 Download
© 2025 Palo Alto Networks, Inc. All rights reserved.