Palo Alto Networks Security Advisories

1 - 25 of 302

CVSS	Summary	Versions	Affected	Unaffected	Published	Updated
4.3	CVE-2025-0116 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted LLDP Frame	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.5 < 11.1.8 < 10.2.13-h5, < 10.2.14 < 10.1.14-h11 None	All >= 11.2.5 >= 11.1.8 (ETA: 3/13/2025) >= 10.2.13-h5, >= 10.2.14 (ETA: 4/3/2025) >= 10.1.14-h11 All	2025-03-12	2025-03-12
4.3	CVE-2025-0115 PAN-OS: Authenticated Admin File Read Vulnerability in PAN-OS CLI	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.3 < 11.1.5 < 11.0.6 < 10.2.11 < 10.1.14-h11 None	All >= 11.2.3 >= 11.1.5 >= 11.0.6 >= 10.2.11 >= 10.1.14-h11 All	2025-03-12	2025-03-12
4.6	CVE-2025-0114 PAN-OS: Denial of Service (DoS) in GlobalProtect	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None None None < 11.0.2 < 10.2.5 < 10.1.14-h11 None	All All All >= 11.0.2 >= 10.2.5 >= 10.1.14-h11 All	2025-03-12	2025-03-12
i	PAN-SA-2025-0006 Informational Bulletin: Impact of OSS CVEs in PAN-OS	PAN-OS	None	All	2025-02-12	2025-02-12
i	PAN-SA-2025-0005 GlobalProtect Clientless VPN: Clientless VPN Misconfiguration Allows Cross-Site Attacks	Cloud NGFW PAN-OS Prisma Access	None All All	All None None	2025-02-12	2025-02-12
7.1	CVE-2025-0111 PAN-OS: Authenticated File Read Vulnerability in the Management Web Interface	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.4-h4, < 11.2.5 < 11.1.2-h18, < 11.1.4-h13, < 11.1.6-h1 < 10.2.7-h24, < 10.2.8-h21, < 10.2.9-h21, < 10.2.10-h14, < 10.2.11-h12, < 10.2.12-h6, < 10.2.13-h3 < 10.1.14-h9 None	All >= 11.2.4-h4, >= 11.2.5 >= 11.1.2-h18, >= 11.1.4-h13, >= 11.1.6-h1 >= 10.2.7-h24, >= 10.2.8-h21, >= 10.2.9-h21, >= 10.2.10-h14, >= 10.2.11-h12, >= 10.2.12-h6, >= 10.2.13-h3 >= 10.1.14-h9 All	2025-02-12	2025-03-06
5.5	CVE-2025-0109 PAN-OS: Unauthenticated File Deletion Vulnerability on the Management Web Interface	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.4-h4, < 11.2.5 < 11.1.2-h18, < 11.1.4-h13, < 11.1.6-h1 < 10.2.7-h24, < 10.2.8-h21, < 10.2.9-h21, < 10.2.10-h14, < 10.2.11-h12, < 10.2.12-h6, < 10.2.13-h3 < 10.1.14-h9 None	All >= 11.2.4-h4, >= 11.2.5 >= 11.1.2-h18, >= 11.1.4-h13, >= 11.1.6-h1 >= 10.2.7-h24, >= 10.2.8-h21, >= 10.2.9-h21, >= 10.2.10-h14, >= 10.2.11-h12, >= 10.2.12-h6, >= 10.2.13-h3 >= 10.1.14-h9 All	2025-02-12	2025-03-06
8.8	CVE-2025-0108 PAN-OS: Authentication Bypass in the Management Web Interface	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.4-h4, < 11.2.5 < 11.1.2-h18, < 11.1.4-h13, < 11.1.6-h1 < 10.2.7-h24, < 10.2.8-h21, < 10.2.9-h21, < 10.2.10-h14, < 10.2.11-h12, < 10.2.12-h6, < 10.2.13-h3 < 10.1.14-h9 None	All >= 11.2.4-h4, >= 11.2.5 >= 11.1.2-h18, >= 11.1.4-h13, >= 11.1.6-h1 >= 10.2.7-h24, >= 10.2.8-h21, >= 10.2.9-h21, >= 10.2.10-h14, >= 10.2.11-h12, >= 10.2.12-h6, >= 10.2.13-h3 >= 10.1.14-h9 All	2025-02-12	2025-03-06
i	PAN-SA-2025-0003 Informational: PAN-OS BIOS and Bootloader Security Bulletin	Cloud NGFW PAN-OS Prisma Access	None All on PA-3200, PA-5200, PA-7000 None	All None on PA-3200, PA-5200, PA-7000. No other platforms are affected All	2025-01-23	2025-01-27
7.8	PAN-SA-2025-0001 Expedition: Multiple Vulnerabilities in Expedition Migration Tool Lead to Exposure of Firewall Credentials	Cloud NGFW Expedition 1 Panorama PAN-OS Prisma Access	None < 1.2.101 None None None	All >= 1.2.101 All All All	2025-01-08	2025-01-15
8.7	CVE-2024-3393 PAN-OS: Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet	Cloud NGFW PAN-OS PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 Prisma Access	None None on Panorama < 11.2.3 < 11.1.2-h16, < 11.1.3-h13, < 11.1.4-h7, < 11.1.5 >= 10.2.8, < 10.2.8-h19, < 10.2.9-h19, < 10.2.10-h12, < 10.2.11-h10, < 10.2.12-h4, < 10.2.13-h2, < 10.2.14 >= 10.1.14, < 10.1.14-h8, < 10.1.15 None None >= 10.2.8 on PAN-OS, < 10.2.9-h19 on PAN-OS, < 10.2.10-h12 on PAN-OS, < 11.2.3 on PAN-OS	All All on Panorama >= 11.2.3 >= 11.1.2-h16, >= 11.1.3-h13, >= 11.1.4-h7, >= 11.1.5 < 10.2.8, >= 10.2.8-h19, >= 10.2.9-h19, >= 10.2.10-h12, >= 10.2.11-h10, >= 10.2.12-h4, >= 10.2.13-h2, >= 10.2.14 < 10.1.14, >= 10.1.14-h8, >= 10.1.15 All All < 10.2.8 on PAN-OS, >= 10.2.9-h19 on PAN-OS, >= 10.2.10-h12 on PAN-OS, >= 11.2.3 on PAN-OS	2024-12-27	2025-01-30
9.3	CVE-2024-0012 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015)	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.0-h1, < 11.2.1-h1, < 11.2.2-h2, < 11.2.3-h3, < 11.2.4-h1 < 11.1.0-h4, < 11.1.1-h2, < 11.1.2-h15, < 11.1.3-h11, < 11.1.4-h7, < 11.1.5-h1 < 11.0.0-h4, < 11.0.1-h5, < 11.0.2-h5, < 11.0.3-h13, < 11.0.4-h6, < 11.0.5-h2, < 11.0.6-h1 < 10.2.0-h4, < 10.2.1-h3, < 10.2.2-h6, < 10.2.3-h14, < 10.2.4-h32, < 10.2.5-h9, < 10.2.6-h6, < 10.2.7-h18, < 10.2.8-h15, < 10.2.9-h16, < 10.2.10-h9, < 10.2.11-h6, < 10.2.12-h2 None None	All >= 11.2.0-h1, >= 11.2.1-h1, >= 11.2.2-h2, >= 11.2.3-h3, >= 11.2.4-h1 >= 11.1.0-h4, >= 11.1.1-h2, >= 11.1.2-h15, >= 11.1.3-h11, >= 11.1.4-h7, >= 11.1.5-h1 >= 11.0.0-h4, >= 11.0.1-h5, >= 11.0.2-h5, >= 11.0.3-h13, >= 11.0.4-h6, >= 11.0.5-h2, >= 11.0.6-h1 >= 10.2.0-h4, >= 10.2.1-h3, >= 10.2.2-h6, >= 10.2.3-h14, >= 10.2.4-h32, >= 10.2.5-h9, >= 10.2.6-h6, >= 10.2.7-h18, >= 10.2.8-h15, >= 10.2.9-h16, >= 10.2.10-h9, >= 10.2.11-h6, >= 10.2.12-h2 All All	2024-11-18	2025-03-03
6.9	CVE-2024-9474 PAN-OS: Privilege Escalation (PE) Vulnerability in the Web Management Interface	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.0-h1, < 11.2.1-h1, < 11.2.2-h2, < 11.2.3-h3, < 11.2.4-h1 < 11.1.0-h4, < 11.1.1-h2, < 11.1.2-h15, < 11.1.3-h11, < 11.1.4-h7, < 11.1.5-h1 < 11.0.0-h4, < 11.0.1-h5, < 11.0.2-h5, < 11.0.3-h13, < 11.0.4-h6, < 11.0.5-h2, < 11.0.6-h1 < 10.2.0-h4, < 10.2.1-h3, < 10.2.2-h6, < 10.2.3-h14, < 10.2.4-h32, < 10.2.5-h9, < 10.2.6-h6, < 10.2.7-h18, < 10.2.8-h15, < 10.2.9-h16, < 10.2.10-h9, < 10.2.11-h6, < 10.2.12-h2 < 10.1.3-h4, < 10.1.6-h9, < 10.1.8-h8, < 10.1.9-h14, < 10.1.10-h9, < 10.1.11-h10, < 10.1.12-h3, < 10.1.13-h5, < 10.1.14-h6 None	All >= 11.2.0-h1, >= 11.2.1-h1, >= 11.2.2-h2, >= 11.2.3-h3, >= 11.2.4-h1 >= 11.1.0-h4, >= 11.1.1-h2, >= 11.1.2-h15, >= 11.1.3-h11, >= 11.1.4-h7, >= 11.1.5-h1 >= 11.0.0-h4, >= 11.0.1-h5, >= 11.0.2-h5, >= 11.0.3-h13, >= 11.0.4-h6, >= 11.0.5-h2, >= 11.0.6-h1 >= 10.2.0-h4, >= 10.2.1-h3, >= 10.2.2-h6, >= 10.2.3-h14, >= 10.2.4-h32, >= 10.2.5-h9, >= 10.2.6-h6, >= 10.2.7-h18, >= 10.2.8-h15, >= 10.2.9-h16, >= 10.2.10-h9, >= 10.2.11-h6, >= 10.2.12-h2 >= 10.1.3-h4, >= 10.1.6-h9, >= 10.1.8-h8, >= 10.1.9-h14, >= 10.1.10-h9, >= 10.1.11-h10, >= 10.1.12-h3, >= 10.1.13-h5, >= 10.1.14-h6 All	2024-11-18	2024-11-21
1	CVE-2024-5920 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in PAN-OS Enables Impersonation of a Legitimate Administrator	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None None < 11.1.4 < 11.0.6 < 10.2.11 < 10.1.14 None	All All >= 11.1.4 >= 11.0.6 >= 10.2.11 >= 10.1.14 All	2024-11-13	2024-11-13
1.3	CVE-2024-5918 PAN-OS: Improper Certificate Validation Enables Impersonation of a Legitimate GlobalProtect User	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None None None < 11.0.3 < 10.2.4-h5 < 10.1.11 None	All All All >= 11.0.3 >= 10.2.4-h5 >= 10.1.11 All	2024-11-13	2024-11-13
1.2	CVE-2024-5919 PAN-OS: Authenticated XML External Entities (XXE) Injection Vulnerability	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None None None < 11.0.2 < 10.2.5 < 10.1.10 None	All All All >= 11.0.2 >= 10.2.5 >= 10.1.10 All	2024-11-13	2024-11-13
6.6	CVE-2024-2550 PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway Using a Specially Crafted Packet	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None None < 11.1.4-h9, < 11.1.5 < 11.0.6 < 10.2.7-h21, < 10.2.8-h18, < 10.2.9-h18, < 10.2.10-h10, < 10.2.11 None None	All All >= 11.1.4-h9, >= 11.1.5 >= 11.0.6 >= 10.2.7-h21, >= 10.2.8-h18, >= 10.2.9-h18, >= 10.2.10-h10, >= 10.2.11 All All	2024-11-13	2025-01-06
4.3	CVE-2024-2552 PAN-OS: Arbitrary File Delete Vulnerability in the Command Line Interface (CLI)	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.4 < 11.1.4-h9, < 11.1.5 < 11.0.6 < 10.2.7-h21, < 10.2.8-h18, < 10.2.9-h18, < 10.2.10-h10, < 10.2.11-h9, < 10.2.12 None None	All >= 11.2.4 >= 11.1.4-h9, >= 11.1.5 >= 11.0.6 >= 10.2.7-h21, >= 10.2.8-h18, >= 10.2.9-h18, >= 10.2.10-h10, >= 10.2.11-h9, >= 10.2.12 All All	2024-11-13	2025-01-06
6.6	CVE-2024-9472 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Traffic	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.2-h3, < 11.2.3 < 11.1.2-h14, < 11.1.3-h10 None < 10.2.7-h16, < 10.2.8-h13, < 10.2.9-h14, < 10.2.10-h7, < 10.2.11-h4 None None	All >= 11.2.2-h3, >= 11.2.3 >= 11.1.2-h14, >= 11.1.3-h10 All >= 10.2.7-h16, >= 10.2.8-h13, >= 10.2.9-h14, >= 10.2.10-h7, >= 10.2.11-h4 All All	2024-11-13	2024-11-13
6.6	CVE-2024-2551 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None None None < 11.0.5 < 10.2.4-h6, < 10.2.5 < 10.1.14 None	All All All >= 11.0.5 >= 10.2.4-h6, >= 10.2.5 >= 10.1.14 All	2024-11-13	2024-11-13
0.5	CVE-2024-5917 PAN-OS: Server-Side Request Forgery in WildFire	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1	None None None None < 10.2.2 < 10.1.7	All All All All >= 10.2.2 >= 10.1.7	2024-11-13	2025-01-22
i	PAN-SA-2024-0013 Informational Bulletin: Impact of OSS CVEs in PAN-OS	PAN-OS	None, None	All, All	2024-11-01	2024-11-01
i	PAN-SA-2024-0012 Informational Bulletin: OSS CVEs fixed in PAN-OS	PAN-OS			2024-10-29	2024-10-29
5.1	CVE-2024-9471 PAN-OS: Privilege Escalation (PE) Vulnerability in XML API	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 Prisma Access	None None < 11.0.3 < 10.2.8 < 10.1.11 All All None	All All >= 11.0.3 >= 10.2.8 >= 10.1.11 None None All	2024-10-09	2024-10-09
8.2	CVE-2024-9468 PAN-OS: Firewall Denial of Service (DoS) via a Maliciously Crafted Packet	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None None < 11.1.3 < 11.0.4-h5, < 11.0.6 < 10.2.9-h11, < 10.2.10-h4, < 10.2.11 None None	All All >= 11.1.3 >= 11.0.4-h5, >= 11.0.6 >= 10.2.9-h11, >= 10.2.10-h4, >= 10.2.11 All All	2024-10-09	2024-10-14

1 - 25 of 302 Download