| | Versions | Affected | Unaffected | | |
---|
10
N | CVE-2024-3400
PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect | | none < 11.1.0-h3, < 11.1.1-h1, < 11.1.2-h3 < 11.0.0-h3, < 11.0.1-h4, < 11.0.2-h4, < 11.0.3-h10, < 11.0.4-h1 < 10.2.0-h3, < 10.2.1-h2, < 10.2.2-h5, < 10.2.3-h13, < 10.2.4-h16, < 10.2.5-h6, < 10.2.6-h3, < 10.2.7-h8, < 10.2.8-h3, < 10.2.9-h1 none none none | All >= 11.1.0-h3, >= 11.1.1-h1, >= 11.1.2-h3 >= 11.0.0-h3, >= 11.0.1-h4, >= 11.0.2-h4, >= 11.0.3-h10, >= 11.0.4-h1 >= 10.2.0-h3, >= 10.2.1-h2, >= 10.2.2-h5, >= 10.2.3-h13, >= 10.2.4-h16, >= 10.2.5-h6, >= 10.2.6-h3, >= 10.2.7-h8, >= 10.2.8-h3, >= 10.2.9-h1 All All all | 2024-04-12 | 2024-05-03 |
8.3
N | CVE-2024-3383
PAN-OS: Improper Group Membership Change Vulnerability in Cloud Identity Engine (CIE) | | none none < 11.0.3 < 10.2.5 < 10.1.11 none none | All All >= 11.0.3 >= 10.2.5 >= 10.1.11 All all | 2024-04-10 | 2024-04-10 |
8.2 | CVE-2024-3382
PAN-OS: Firewall Denial of Service (DoS) via a Burst of Crafted Packets | | none < 11.1.2 < 11.0.4 < 10.2.7-h3 none none none | All >= 11.1.2 >= 11.0.4 >= 10.2.7-h3 All All all | 2024-04-10 | 2024-04-10 |
8.2
N | CVE-2024-3385
PAN-OS: Firewall Denial of Service (DoS) when GTP Security is Disabled | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 Prisma Access | none none < 11.0.3 < 10.2.8 < 10.1.12 < 9.1.17 < 9.0.17-h4 none | All All >= 11.0.3 >= 10.2.8 >= 10.1.12 >= 9.1.17 >= 9.0.17-h4 All | 2024-04-10 | 2024-04-10 |
8.2
N | CVE-2024-3384
PAN-OS: Firewall Denial of Service (DoS) via Malformed NTLM Packets | | none none none < 10.0.12 < 9.1.15-h1 < 9.0.17 < 8.1.24 none | All All All >= 10.0.12 >= 9.1.15-h1 >= 9.0.17 >= 8.1.24 all | 2024-04-10 | 2024-04-10 |
6.9
N | CVE-2024-3386
PAN-OS: Predefined Decryption Exclusions Does Not Work as Intended | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 Prisma Access | none none < 11.0.1-h2, < 11.0.2 < 10.2.4-h2, < 10.2.5 < 10.1.9-h3, < 10.1.10 < 10.0.13 < 9.1.17 < 9.0.17-h2 none | All All >= 11.0.1-h2, >= 11.0.2 >= 10.2.4-h2, >= 10.2.5 >= 10.1.9-h3, >= 10.1.10 >= 10.0.13 >= 9.1.17 >= 9.0.17-h2 All | 2024-04-10 | 2024-04-10 |
6 | CVE-2024-3387
PAN-OS: Weak Certificate Strength in Panorama Software Leads to Sensitive Information Disclosure | | none none < 11.0.4 on Panorama < 10.2.7-h3 on Panorama, < 10.2.8 on Panorama < 10.1.12 on Panorama none none | All All >= 11.0.4 on Panorama >= 10.2.7-h3 on Panorama, >= 10.2.8 on Panorama >= 10.1.12 on Panorama All all | 2024-04-10 | 2024-04-10 |
5.1 | CVE-2024-3388
PAN-OS: User Impersonation in GlobalProtect SSL VPN | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none none < 11.0.3 < 10.2.7-h3 < 10.1.11-h4 < 9.1.17 < 9.0.17-h4 < 8.1.26 < 10.2.4 | All All >= 11.0.3 >= 10.2.7-h3 >= 10.1.11-h4 >= 9.1.17 >= 9.0.17-h4 >= 8.1.26 >= 10.2.4 | 2024-04-10 | 2024-04-10 |
i | PAN-SA-2024-0004
Informational Bulletin: OSS CVEs fixed in PAN-OS | | Versions prior to those listed above | | 2024-04-10 | |
i | CVE-2024-3094
Informational: Impact of Malicious Code in XZ Tools and Libraries (CVE-2024-3094) | | | | 2024-04-01 | 2024-04-01 |
5.1 | CVE-2024-2433
PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 Prisma Access | none none < 11.0.3 on Panorama < 10.2.8 on Panorama < 10.1.12 on Panorama < 9.1.17 on Panorama < 9.0.17-h4 on Panorama none | All All >= 11.0.3 on Panorama >= 10.2.8 on Panorama >= 10.1.12 on Panorama >= 9.1.17 on Panorama >= 9.0.17-h4 on Panorama All | 2024-03-13 | 2024-03-13 |
6.3 | CVE-2024-0007
PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface | | none none none < 10.1.6 on Panorama < 10.0.11 on Panorama < 9.1.16 on Panorama < 9.0.17 on Panorama < 8.1.24-h1 on Panorama, < 8.1.25 on Panorama none | All All on Panorama All on Panorama >= 10.1.6 on Panorama >= 10.0.11 on Panorama >= 9.1.16 on Panorama >= 9.0.17 on Panorama >= 8.1.24-h1 on Panorama, >= 8.1.25 on Panorama all | 2024-02-14 | 2024-02-14 |
5.4 | CVE-2024-0008
PAN-OS: Insufficient Session Expiration Vulnerability in the Web Interface | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 Prisma Access | none none < 11.0.2 < 10.2.5 < 10.1.10-h1, < 10.1.11 < 10.0.12-h1, < 10.0.13 < 9.1.17 < 9.0.17-h2 none | All All >= 11.0.2 >= 10.2.5 >= 10.1.10-h1, >= 10.1.11 >= 10.0.12-h1, >= 10.0.13 >= 9.1.17 >= 9.0.17-h2 All | 2024-02-14 | 2024-02-14 |
5.3 | CVE-2024-0009
PAN-OS: Improper IP Address Verification in GlobalProtect Gateway | | none none < 11.0.1 < 10.2.4 none none | All All >= 11.0.1 >= 10.2.4 All all | 2024-02-14 | 2024-02-14 |
5.1 | CVE-2024-0010
PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Portal | | none none none < 10.1.11-h1, < 10.1.12 < 9.1.17 < 9.0.17-h4 none | All All All >= 10.1.11-h1, >= 10.1.12 >= 9.1.17 >= 9.0.17-h4 all | 2024-02-14 | 2024-02-14 |
5.1 | CVE-2024-0011
PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication | | none none none < 10.1.3 < 10.0.11 < 9.1.13 < 9.0.17 < 8.1.24 none | All All All >= 10.1.3 >= 10.0.11 >= 9.1.13 >= 9.0.17 >= 8.1.24 all | 2024-02-14 | 2024-02-24 |
i | PAN-SA-2024-0001
Informational Bulletin: Impact of OSS CVEs in PAN-OS | | | | 2024-02-14 | |
6 | CVE-2023-48795
Impact of Terrapin SSH Attack | PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 Prisma SD-WAN ION 6.2 Prisma SD-WAN ION 6.1 Prisma SD-WAN ION 5.6 | < 11.1.3 < 11.0.7 < 10.2.11 All All All < 6.2.4 < 6.1.8 < 5.6.19 | >= 11.1.3 (ETA: beginning of May) >= 11.0.7 (ETA: end of July) >= 10.2.11 (ETA: end of June) TBD TBD None >= 6.2.4 (ETA: end of June) >= 6.1.8 >= 5.6.19 (ETA: end of July) | 2024-01-09 | 2024-03-29 |
7.5 | CVE-2023-6790
PAN-OS: DOM-Based Cross-Site Scripting (XSS) Vulnerability in the Web Interface | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none none < 11.0.1 < 10.2.4 < 10.1.9 < 10.0.12 < 9.1.16 < 9.0.17 < 8.1.25 none | All All >= 11.0.1 >= 10.2.4 >= 10.1.9 >= 10.0.12 >= 9.1.16 >= 9.0.17 >= 8.1.25 All | 2023-12-13 | 2023-12-13 |
6.1 | CVE-2023-6791
PAN-OS: Plaintext Disclosure of External System Integration Credentials | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none none < 11.0.1 < 10.2.4 < 10.1.9 < 10.0.12 < 9.1.16 < 9.0.17 < 8.1.24-h1 none | All All >= 11.0.1 >= 10.2.4 >= 10.1.9 >= 10.0.12 >= 9.1.16 >= 9.0.17 >= 8.1.24-h1 All | 2023-12-13 | 2023-12-13 |
5.9 | CVE-2023-6792
PAN-OS: OS Command Injection Vulnerability in the XML API | | none none none < 10.1.6 < 10.0.12 < 9.1.15 < 9.0.17 < 8.1.24 none | All All All >= 10.1.6 >= 10.0.12 >= 9.1.15 >= 9.0.17 >= 8.1.24 all | 2023-12-13 | 2023-12-13 |
5.9 | CVE-2023-6794
PAN-OS: File Upload Vulnerability in the Web Interface | | none none none < 9.1.14 < 9.0.17-h1 < 8.1.26 none | All All All >= 9.1.14 >= 9.0.17-h1 >= 8.1.26 all | 2023-12-13 | 2023-12-13 |
5.9 | CVE-2023-6795
PAN-OS: OS Command Injection Vulnerability in the Web Interface | | none none none < 10.1.3 < 10.0.9 < 9.1.12 < 9.0.17 < 8.1.24-h1 none | All All All >= 10.1.3 >= 10.0.9 >= 9.1.12 >= 9.0.17 >= 8.1.24-h1 all | 2023-12-13 | 2023-12-13 |
5.1 | CVE-2023-6793
PAN-OS: XML API Keys Revoked by Read-Only PAN-OS Administrator | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none none < 11.0.2 < 10.2.5 < 10.1.11 All < 9.1.17 < 9.0.17-h4 none none | All All >= 11.0.2 >= 10.2.5 >= 10.1.11 None >= 9.1.17 >= 9.0.17-h4 All All | 2023-12-13 | 2023-12-13 |
4.8 | CVE-2023-6789
PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface | Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none none < 11.0.2 < 10.2.5 < 10.1.11 All < 9.1.17 < 9.0.17-h4 < 8.1.26 none | All All >= 11.0.2 >= 10.2.5 >= 10.1.11 None >= 9.1.17 >= 9.0.17-h4 >= 8.1.26 All | 2023-12-13 | 2023-12-13 |
i | CVE-2023-38545
Impact of curl and libcurl Vulnerabilities (CVE-2023-38545, CVE-2023-38546) | | | | 2023-10-12 | 2023-10-31 |
i | CVE-2023-44487
Impact of Rapid Reset and HTTP/2 DoS Vulnerabilities (CVE-2023-44487, CVE-2023-35945) | | | | 2023-10-11 | 2023-10-25 |
0 | CVE-2023-4863
Impact of libwebp Vulnerability CVE-2023-4863 | | | | 2023-10-02 | 2023-10-02 |
8.2
N | CVE-2023-38802
PAN-OS: Denial-of-Service (DoS) Vulnerability in BGP Software | Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access Prisma SD-WAN ION 6.2 Prisma SD-WAN ION 6.1 Prisma SD-WAN ION 5.6 | none < 11.0.3 < 10.2.6 < 10.1.11 < 9.1.16-h3 < 9.0.17-h4 < 8.1.26 Customers whose most recent software upgrade was before 09/30 < 6.2.3 < 6.1.5 none | All >= 11.0.3 >= 10.2.6 >= 10.1.11 >= 9.1.16-h3 >= 9.0.17-h4 >= 8.1.26 Customers who have received a software upgrade or are using new software on or after 09/30 >= 6.2.3 >= 6.1.5 All | 2023-09-13 | 2024-01-18 |
i | PAN-SA-2023-0004
Informational Bulletin: Impact of TunnelCrack Vulnerabilities (CVE-2023-36671, CVE-2023-36672, CVE-2023-35838, and CVE-2023-36673) | PAN-OS with GlobalProtect app on Android and ChromeOS PAN-OS with GlobalProtect app on iOS PAN-OS with GlobalProtect app on Windows, macOS, and Linux Prisma Access with GlobalProtect app on Android and ChromeOS Prisma Access with GlobalProtect app on iOS Prisma Access with GlobalProtect app on Windows, macOS, and Linux | LocalNet: None, ServerIP: Gateways with address set as an FQDN LocalNet: Third-party apps with the "Local Network" permission enabled and Apple apps, ServerIP: Gateways with address set as an FQDN LocalNet: Configurations allowing local network access, ServerIP: Gateways with address set as an FQDN None LocalNet: Third-party apps with the "Local Network" permission enabled and Apple apps, ServerIP: None LocalNet: Configurations allowing local network access, ServerIP: None | LocalNet: All, ServerIP: Gateways with address set as an IP LocalNet: Third-party apps with the "Local Network" permission disabled, ServerIP: Gateways with address set as an IP LocalNet: "No direct access to local network" enabled, ServerIP: Gateways with address set as an IP All LocalNet: Third-party apps with the "Local Network" permission disabled, ServerIP: All LocalNet: "No direct access to local network" enabled, ServerIP: All | 2023-08-17 | 2023-09-26 |
5.5 | CVE-2023-38046
PAN-OS: Read System Files and Resources During Configuration Commit | | none < 11.0.1 < 10.2.4 none none none | All >= 11.0.1 >= 10.2.4 All All all | 2023-07-12 | 2023-07-12 |
i | PAN-SA-2023-0003
Informational Bulletin: Impact of MOVEit Vulnerabilities (CVE-2023-34362, CVE-2023-35036, CVE-2023-35708) | | | | 2023-06-16 | 2023-06-20 |
5.4 | CVE-2023-0010
PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication | Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none none < 10.2.2 < 10.1.6 < 10.0.11 < 9.1.16 < 9.0.17 < 8.1.24 none | All All >= 10.2.2 >= 10.1.6 >= 10.0.11 >= 9.1.16 >= 9.0.17 >= 8.1.24 All | 2023-06-14 | 2023-06-29 |
6.5 | CVE-2023-0007
PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface | | none none none < 10.0.7 on Panorama < 9.1.16 on Panorama < 9.0.17 on Panorama < 8.1.25 on Panorama none | All All All >= 10.0.7 on Panorama >= 9.1.16 on Panorama >= 9.0.17 on Panorama >= 8.1.25 on Panorama all | 2023-05-10 | 2023-05-10 |
4.4 | CVE-2023-0008
PAN-OS: Local File Disclosure Vulnerability in the PAN-OS Web Interface | Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none < 11.0.1 < 10.2.4 < 10.1.10 < 10.0.12 < 9.1.16 < 9.0.17 < 8.1.25 none | All >= 11.0.1 >= 10.2.4 >= 10.1.10 >= 10.0.12 >= 9.1.16 >= 9.0.17 >= 8.1.25 All | 2023-05-10 | 2023-05-11 |
6.5 | CVE-2023-0004
PAN-OS: Local File Deletion Vulnerability | Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none none none < 10.1.6 < 10.0.11 < 9.1.15 < 9.0.17 < 8.1.24 none | All All All >= 10.1.6 >= 10.0.11 >= 9.1.15 >= 9.0.17 >= 8.1.24 All | 2023-04-12 | 2023-04-19 |
4.1 | CVE-2023-0005
PAN-OS: Exposure of Sensitive Information Vulnerability | Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access | none none < 10.2.3 < 10.1.8 < 10.0.12 < 9.1.15 < 9.0.17 < 8.1.24 none | All All >= 10.2.3 >= 10.1.8 >= 10.0.12 >= 9.1.15 >= 9.0.17 >= 8.1.24 All | 2023-04-12 | 2023-04-12 |
i | CVE-2023-22809
Impact of Sudo Vulnerability CVE-2023-22809 | | | | 2023-02-08 | 2023-02-08 |
i | PAN-SA-2023-0001
Impact of OpenSSL Vulnerabilities Disclosed Feb 7, 2023 | | | | 2023-02-08 | 2023-02-08 |
i | PAN-SA-2022-0007
Impact of OpenSSL 3.0 Vulnerability CVE-2022-3996 | | | | 2022-12-23 | 2022-12-23 |
i | CVE-2022-42889
Impact of Apache Text Commons Vulnerability CVE-2022-42889 | | | | 2022-11-09 | 2022-11-09 |
i | PAN-SA-2022-0006
Impact of OpenSSL 3.0 Vulnerabilities CVE-2022-3786 and CVE-2022-3602 | | | | 2022-10-31 | 2022-11-09 |
8.1 | CVE-2022-0030
PAN-OS: Authentication Bypass in Web Interface | | | | 2022-10-12 | 2022-10-12 |
0 | CVE-2022-28199
Informational: PAN-OS: Impact of the NVIDIA Dataplane Development Kit (DPDK) Vulnerability CVE-2022-28199 | | | | 2022-09-14 | 2022-09-14 |
8.6
N | CVE-2022-0028
PAN-OS: Reflected Amplification Denial-of-Service (DoS) Vulnerability in URL Filtering | Cloud NGFW PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.1 Prisma Access 3.0 ➔ View additional products | none < 10.2.2-h2 < 10.1.6-h6 < 10.0.11-h1 < 9.1.14-h4 < 9.0.16-h3 < 8.1.23-h1 none none none | All >= 10.2.2-h2 >= 10.1.6-h6 >= 10.0.11-h1 >= 9.1.14-h4 >= 9.0.16-h3 >= 8.1.23-h1 All All all | 2022-08-10 | 2022-08-19 |
7.2 | CVE-2022-0024
PAN-OS: Improper Neutralization Vulnerability Leads to Unintended Program Execution During Configuration Commit | PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 10.1.5 < 10.0.10 < 9.1.13 < 9.0.16 < 8.1.23 | >= 10.2.0 >= 10.1.5 >= 10.0.10 >= 9.1.13 >= 9.0.16 >= 8.1.23 | 2022-05-11 | 2022-05-11 |
5.9 | CVE-2022-0023
PAN-OS: Denial-of-Service (DoS) Vulnerability in DNS Proxy | PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.0 Prisma Access 2.2 Prisma Access 2.1 | none < 10.1.5 < 10.0.10 < 9.1.13 < 9.0.16 < 8.1.22 none none none | 10.2.* >= 10.1.5 >= 10.0.10 >= 9.1.13 >= 9.0.16 >= 8.1.22 Preferred, Innovation Preferred Preferred, Innovation | 2022-04-13 | 2022-04-13 |
7.5
N | CVE-2022-0778
Impact of the OpenSSL Infinite Loop Vulnerability CVE-2022-0778 | Cortex XDR Agent 7.7 Cortex XDR Agent 7.6 Cortex XDR Agent 7.5-CE Cortex XDR Agent 7.5 Cortex XDR Agent 7.4 Cortex XDR Agent 6.1 Cortex XSOAR GlobalProtect App 6.0 GlobalProtect App 5.3 GlobalProtect App 5.2 GlobalProtect App 5.1 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.1 Prisma Access 3.0 Prisma Access 2.2 Prisma Access 2.1 Prisma Cloud | < 7.7.0.60725 on Windows, < 7.7.0.2356 on macOS, < 7.7.0.59559 on Linux < 7.6.2.60545 on Windows, < 7.6.2.2311 on macOS, < 7.6.2.59612 on Linux < 7.5.100.60642 on Windows, < 7.5.100.2276 on macOS, < 7.5.100.59687 on Linux < 7.5.3.60113 on Windows, < 7.5.3.2265 on macOS, < 7.5.3.59465 on Linux 7.4.* < 6.1.9.61370 on Windows, < 6.1.7.1690 on macOS, < 6.1.7.60245 on Linux none < 6.0.1 on Windows and macOS, < 6.0.2 on Android and iOS < 5.3.4 < 5.2.12 < 5.1.11 < 10.2.1 < 10.1.5-h1 < 10.0.10 < 9.1.13-h3 < 9.0.16-h2 < 8.1.23 Preferred, Innovation Preferred, Innovation Preferred Preferred, Innovation none | >= 7.7.0.60725 on Windows, >= 7.7.0.2356 on macOS, >= 7.7.0.59559 on Linux >= 7.6.2.60545 on Windows, >= 7.6.2.2311 on macOS, >= 7.6.2.59612 on Linux >= 7.5.100.60642 on Windows, >= 7.5.100.2276 on macOS, >= 7.5.100.59687 on Linux >= 7.5.3.60113 on Windows, >= 7.5.3.2265 on macOS, >= 7.5.3.59465 on Linux none >= 6.1.9.61370 on Windows, >= 6.1.7.1690 on macOS, >= 6.1.7.60245 on Linux all >= 6.0.1 on Windows and macOS, >= 6.0.2 on Android and iOS >= 5.3.4 >= 5.2.12 >= 5.1.11 >= 10.2.1 >= 10.1.5-h1 >= 10.0.10 >= 9.1.13-h3 >= 9.0.16-h2 >= 8.1.23 none none none none all | 2022-03-31 | 2022-06-24 |
0 | CVE-2022-22963
Informational: Impact of Spring Vulnerabilities CVE-2022-22963 and CVE-2022-22965 | | | | 2022-03-31 | 2022-04-25 |
4.1 | CVE-2022-0022
PAN-OS: Use of a Weak Cryptographic Algorithm for Stored Password Hashes | | none none < 10.0.7 < 9.1.11 < 9.0.17 < 8.1.21 none none | 10.2.* 10.1.* >= 10.0.7 >= 9.1.11 >= 9.0.17 >= 8.1.21 Preferred, Innovation all | 2022-03-09 | 2022-03-09 |
0 | CVE-2021-44142
Informational: Impact of the Samba Vulnerability CVE-2021-44142 on PAN-OS | | | | 2022-03-09 | 2022-03-09 |
6.5 | CVE-2022-0011
PAN-OS: URL Category Exceptions Match More URLs Than Intended in URL Filtering | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.0 Prisma Access 2.2 Prisma Access 2.1 | < 10.1.3 < 10.0.8 < 9.1.12 9.0.* < 8.1.21 none Preferred Preferred, Innovation | >= 10.1.3 >= 10.0.8 >= 9.1.12 none >= 8.1.21 Preferred, Innovation none none | 2022-02-09 | 2022-03-09 |
9.8
N | CVE-2021-44228
Impact of Log4j Vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832 | | none none none < 2.1 < 10.0.8-h8 on Panorama < 9.1.12-h3 on Panorama < 9.0.15 on Panorama none | all all all >= 2.1 >= 10.0.8-h8 on Panorama >= 9.1.12-h3 on Panorama >= 9.0.15 on Panorama all | 2021-12-10 | 2022-01-22 |
0 | CVE-2021-41617
Informational: Impact of the OpenSSH Vulnerability CVE-2021-41617 on PAN-OS | | | | 2021-11-30 | 2021-11-30 |
9.8
N | CVE-2021-3064
PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces | | | 10.1.* 10.0.* 9.1.* >= 8.1.17 all | 2021-11-10 | 2021-11-10 |
8.8 | CVE-2021-3058
PAN-OS: OS Command Injection Vulnerability in Web Interface XML API | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 | < 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1 none none | >= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1 all all | 2021-11-10 | 2021-11-10 |
8.8 | CVE-2021-3056
PAN-OS: Memory Corruption Vulnerability in GlobalProtect Clientless VPN During SAML Authentication | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 | none < 10.0.1 < 9.1.9 < 9.0.14 < 8.1.20 none Preferred | 10.1.* >= 10.0.1 >= 9.1.9 >= 9.0.14 >= 8.1.20 all Innovation | 2021-11-10 | 2021-11-10 |
8.1 | CVE-2021-3059
PAN-OS: OS Command Injection Vulnerability When Performing Dynamic Updates | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 | < 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1 none none | >= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1 all all | 2021-11-10 | 2021-11-17 |
8.1 | CVE-2021-3060
PAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP) | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 | < 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1 none Preferred, Innovation | >= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1 all none | 2021-11-10 | 2022-08-06 |
8.1 | CVE-2021-3062
PAN-OS: Improper Access Control Vulnerability Exposing AWS Instance Metadata Endpoint to GlobalProtect Users | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 | none < 10.0.8 on VM-Series < 9.1.11 on VM-Series < 9.0.14 on VM-Series < 8.1.20 on VM-Series none none | 10.1.* on VM-Series >= 10.0.8 on VM-Series >= 9.1.11 on VM-Series >= 9.0.14 on VM-Series >= 8.1.20 on VM-Series all all | 2021-11-10 | 2021-11-17 |
7.5
N | CVE-2021-3063
PAN-OS: Denial-of-Service (DoS) Vulnerability in GlobalProtect Portal and Gateway Interfaces | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 | < 10.1.3 < 10.0.8-h4 < 9.1.11-h3 < 9.0.14-h4 < 8.1.21 none none | >= 10.1.3 >= 10.0.8-h4 >= 9.1.11-h3 >= 9.0.14-h4 >= 8.1.21 all all | 2021-11-10 | 2021-12-09 |
6.4 | CVE-2021-3061
PAN-OS: OS Command Injection Vulnerability in the Command Line Interface (CLI) | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 | < 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1 none none | >= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1 all all | 2021-11-10 | 2021-11-23 |
3.7 | CVE-2020-1968
PAN-OS: Impact of the Raccoon Attack Vulnerability CVE-2020-1968 | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 Prisma Access 2.0 | none none 9.1.* 9.0.* 8.1.* none Preferred Preferred | 10.1.* 10.0.* none none none Preferred Innovation Innovation | 2021-10-13 | 2021-11-01 |
8.1 | CVE-2020-10188
PAN-OS: Impact of Telnet Remote-Code-Execution (RCE) Vulnerability (CVE-2020-10188) | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 10.0.6 < 9.1.9 < 9.0.14 < 8.1.20 | 10.1.* >= 10.0.6 >= 9.1.9 >= 9.0.14 >= 8.1.20 | 2021-09-08 | 2021-09-08 |
8 | CVE-2021-3052
PAN-OS: Reflected Cross-Site Scripting (XSS) in Web Interface | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 10.0.2 < 9.1.10 < 9.0.14 < 8.1.20 | 10.1.* >= 10.0.2 >= 9.1.10 >= 9.0.14 >= 8.1.20 | 2021-09-08 | 2021-09-12 |
7.5
N | CVE-2021-3053
PAN-OS: Exceptional Condition Denial-of-Service (DoS) | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 10.0.5 < 9.1.9 < 9.0.14 < 8.1.20 | 10.1.* >= 10.0.5 >= 9.1.9 >= 9.0.14 >= 8.1.20 | 2021-09-08 | 2021-09-13 |
7.2 | CVE-2021-3054
PAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | < 10.1.2 < 10.0.7 < 9.1.11 < 9.0.14 < 8.1.20 | >= 10.1.2 >= 10.0.7 >= 9.1.11 >= 9.0.14 >= 8.1.20 | 2021-09-08 | 2021-09-12 |
6.5 | CVE-2021-3055
PAN-OS: XML External Entity (XXE) Reference Vulnerability in the PAN-OS Web Interface | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 10.0.6 < 9.1.10 < 9.0.14 < 8.1.20 | 10.1.* >= 10.0.6 >= 9.1.10 >= 9.0.14 >= 8.1.20 | 2021-09-08 | 2021-09-12 |
8.8 | CVE-2021-3050
PAN-OS: OS Command Injection Vulnerability in Web Interface | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | >= 10.1.0 >= 10.0.0 >= 9.1.4 >= 9.0.10 none | >= 10.1.2 >= 10.0.8 >= 9.1.11 >= 9.0.15 8.1.* | 2021-08-11 | 2021-08-11 |
6.8 | CVE-2021-3046
PAN-OS: Improper SAML Authentication Vulnerability in GlobalProtect Portal | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 10.0.5 < 9.1.9 < 9.0.14 < 8.1.19 | 10.1.* >= 10.0.5 >= 9.1.9 >= 9.0.14 >= 8.1.19 | 2021-08-11 | 2021-08-11 |
5.9 | CVE-2021-3048
PAN-OS: Invalid URLs in an External Dynamic List (EDL) can Lead to Firewall Outage | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 10.0.5 < 9.1.9 < 9.0.14 none | 10.1.* >= 10.0.5 >= 9.1.9 >= 9.0.14 8.1.* | 2021-08-11 | 2021-08-11 |
4.9 | CVE-2021-3045
PAN-OS: OS Command Argument Injection in Web Interface | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none none < 9.1.10 < 9.0.14 < 8.1.19 | 10.1.* 10.0.* >= 9.1.10 >= 9.0.14 >= 8.1.19 | 2021-08-11 | 2021-08-11 |
4.2 | CVE-2021-3047
PAN-OS: Weak Cryptography Used in Web Interface Authentication | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 10.0.4 < 9.1.10 < 9.0.14 < 8.1.19 | 10.1.* >= 10.0.4 >= 9.1.10 >= 9.0.14 >= 8.1.19 | 2021-08-11 | 2021-08-11 |
i | PAN-SA-2021-0003
Informational: Impact of the NAME:WRECK DNS vulnerabilities | PAN-OS Prisma SD-WAN (CloudGenix) | | | 2021-05-10 | 2021-05-12 |
4.4 | CVE-2021-3036
PAN-OS: Administrator secrets are logged in web server logs when using the PAN-OS XML API incorrectly | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | < 10.0.1 < 9.1.6 < 9.0.12 < 8.1.19 | >= 10.0.1 >= 9.1.6 >= 9.0.12 >= 8.1.19 | 2021-04-14 | 2021-04-14 |
2.3 | CVE-2021-3037
PAN-OS: Secrets for scheduled configuration exports are logged in system logs | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 9.1.4 < 9.0.13 < 8.1.19 | >= 10.0.0 >= 9.1.4 >= 9.0.13 >= 8.1.19 | 2021-04-14 | 2021-04-14 |
i | CVE-2021-28041
PAN-OS: Informational: Impact of the OpenSSH vulnerability CVE-2021-28041 | | | | 2021-03-24 | 2021-04-14 |
0 | CVE-2020-27619
Informational: Impact of Python Test Suite Vulnerability CVE-2020-27619 | | | | 2021-02-10 | 2021-02-10 |
0 | CVE-2021-3156
Informational: Impact of Sudo Vulnerability CVE-2021-3156 | PAN-OS Prisma Cloud Compute Prisma SD-WAN (CloudGenix) | | | 2021-02-10 | 2021-12-01 |
0 | PAN-SA-2021-0002
Informational: PAN-OS: NAT slipstreaming v1.0 and v2.0 attacks | | | | 2021-02-10 | 2021-03-10 |
4.4 | CVE-2021-3032
PAN-OS: Configuration secrets for log forwarding may be logged in system logs | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | < 10.0.1 < 9.1.4 < 9.0.12 < 8.1.18 | >= 10.0.1 >= 9.1.4 >= 9.0.12 >= 8.1.18 | 2021-01-13 | 2021-01-13 |
4.3 | CVE-2021-3031
PAN-OS: Information exposure in Ethernet data frame construction (Etherleak) | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.1.5 on PA-220, PA-800, PA-3000 Series, PA-3200 Series, PA-5200 Series, PA-7000 Series < 9.0.12 on PA-220, PA-800, PA-3000 Series, PA-3200 Series, PA-5200 Series, PA-7000 Series < 8.1.18 on PA-200, PA-220, PA-500, PA-5000 Series, PA-800, PA-3000 Series, PA-3200 Series, PA-5200 Series, PA-7000 Series 8.0.* on PA-200, PA-220, PA-500, PA-5000 Series, PA-800, PA-3000 Series, PA-3200 Series, PA-5200 Series, PA-7000 Series 7.1.* on PA-200, PA-220, PA-500, PA-5000 Series, PA-800, PA-2000 Series, PA-3000 Series, PA-3200 Series, PA-5200 Series, PA-7000 Series | 10.0.* >= 9.1.5 >= 9.0.12 >= 8.1.18 none none | 2021-01-13 | 2021-01-19 |
0 | PAN-SA-2020-0011
Informational: Impact of OpenSSL vulnerability CVE-2020-1971 | Cortex XSOAR GlobalProtect App PAN-OS | | | 2020-12-09 | 2020-12-09 |
8.2
N | CVE-2020-2050
PAN-OS: Authentication bypass vulnerability in GlobalProtect client certificate verification | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | < 10.0.1 < 9.1.5 < 9.0.11 < 8.1.17 | >= 10.0.1 >= 9.1.5 >= 9.0.11 >= 8.1.17 | 2020-11-11 | 2020-11-19 |
7.5 | CVE-2020-2022
PAN-OS: Panorama session disclosure during context switch into managed device | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 9.1.5 < 9.0.11 < 8.1.17 | 10.0.* >= 9.1.5 >= 9.0.11 >= 8.1.17 | 2020-11-11 | 2020-11-11 |
7.2 | CVE-2020-2000
PAN-OS: OS command injection and memory corruption vulnerability | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | < 10.0.1 < 9.1.4 < 9.0.10 < 8.1.16 | >= 10.0.1 >= 9.1.4 >= 9.0.10 >= 8.1.16 | 2020-11-11 | 2020-11-13 |
5.3
N | CVE-2020-1999
PAN-OS: Threat signatures are evaded by specifically crafted packets | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.1.5 < 9.0.11 < 8.1.17 8.0.* 7.1.* | 10.0.* >= 9.1.5 >= 9.0.11 >= 8.1.17 none none | 2020-11-11 | 2020-11-11 |
3.3 | CVE-2020-2048
PAN-OS: System proxy passwords may be logged in clear text while viewing system state | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 9.1.2 < 9.0.11 < 8.1.17 | 10.0.* >= 9.1.2 >= 9.0.11 >= 8.1.17 | 2020-11-11 | 2020-11-11 |
9.8
N | CVE-2020-2040
PAN-OS: Buffer overflow when Captive Portal or Multi-Factor Authentication (MFA) is enabled | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 | none < 9.1.3 < 9.0.9 < 8.1.15 8.0.* | >= 10.0.0 >= 9.1.3 >= 9.0.9 >= 8.1.15 none | 2020-09-09 | 2020-09-09 |
8.8 | CVE-2020-2036
PAN-OS: Reflected Cross-Site Scripting (XSS) vulnerability in management web interface | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | | >= 10.0.0 >= 9.1.0 >= 9.0.9 >= 8.1.16 | 2020-09-09 | 2021-02-12 |
7.5
N | CVE-2020-2041
PAN-OS: Management web interface denial-of-service (DoS) | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 | none none none < 8.1.16 8.0.* | 10.0.* 9.1.* 9.0.* >= 8.1.16 none | 2020-09-09 | 2020-09-09 |
7.2 | CVE-2020-2042
PAN-OS: Buffer overflow in the management web interface | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | | | 2020-09-09 | 2020-09-09 |
7.2 | CVE-2020-2037
PAN-OS: OS command injection vulnerability in the management web interface | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 9.1.3 < 9.0.10 < 8.1.16 | >= 10.0.0 >= 9.1.3 >= 9.0.10 >= 8.1.16 | 2020-09-09 | 2021-02-12 |
7.2 | CVE-2020-2038
PAN-OS: OS command injection vulnerability in the management web interface | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | < 10.0.1 < 9.1.4 < 9.0.10 none | >= 10.0.1 >= 9.1.4 >= 9.0.10 8.1.* | 2020-09-09 | 2021-02-12 |
5.3
N | CVE-2020-2039
PAN-OS: Management web interface denial-of-service (DoS) through unauthenticated file upload | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | < 10.0.1 < 9.1.4 < 9.0.10 < 8.1.16 | >= 10.0.1 >= 9.1.4 >= 9.0.10 >= 8.1.16 | 2020-09-09 | 2021-02-12 |
3.3 | CVE-2020-2043
PAN-OS: Passwords may be logged in clear text when using after-change-detail custom syslog field for config logs | PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | none < 9.1.4 < 9.0.10 < 8.1.16 | >= 10.0.0 >= 9.1.4 >= 9.0.10 >= 8.1.16 | 2020-09-09 | 2020-09-09 |
3.3 | CVE-2020-2044
PAN-OS: Passwords may be logged in clear text while storing operational command (op command) history | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 | < 9.1.3 < 9.0.10 < 8.1.16 8.0.* | >= 9.1.3 >= 9.0.10 >= 8.1.16 none | 2020-09-09 | 2020-09-09 |
3 | CVE-2020-2035
PAN-OS: URL filtering policy is not enforced on TLS handshakes for decrypted HTTPS sessions | PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | 10.1.* without CTD inspection enabled 10.0.* 9.1.* 9.0.* 8.1.* | 10.1.* with CTD inspection enabled none none none none | 2020-08-12 | 2021-07-20 |
i | PAN-SA-2020-0008
Informational: BootHole Vulnerability Impact on Palo Alto Networks PAN-OS Software | | | | 2020-08-12 | 2020-08-12 |
8.1 | CVE-2020-2034
PAN-OS: OS command injection vulnerability in GlobalProtect portal | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.1.3 < 9.0.9 < 8.1.15 8.0.* 7.1.* | >= 9.1.3 >= 9.0.9 >= 8.1.15 none none | 2020-07-08 | 2020-07-10 |
7.2 | CVE-2020-2030
PAN-OS: OS command injection vulnerability in the management interface | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none none < 8.1.15 8.0.* 7.1.* | >= 9.1.0 >= 9.0.0 >= 8.1.15 none none | 2020-07-08 | 2020-07-08 |
4.9 | CVE-2020-2031
PAN-OS: Integer underflow in the management interface | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 | | | 2020-07-08 | 2020-07-08 |
4.8 | CVE-2020-1982
PAN-OS: TLS 1.0 usage for certain communications with Palo Alto Networks cloud delivered services | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.1.3 < 9.0.9 < 8.1.14 8.0.* none | >= 9.1.3 >= 9.0.9 >= 8.1.14 none 7.1.* | 2020-07-08 | 2023-05-10 |
0 | PAN-SA-2020-0007
Informational: Third-party or open source vulnerabilities that do not impact Palo Alto Networks Products | | | | 2020-07-08 | 2022-04-05 |
10
N | CVE-2020-2021
PAN-OS: Authentication Bypass in SAML Authentication | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.1.3 < 9.0.9 < 8.1.15 8.0.* none | >= 9.1.3 >= 9.0.9 >= 8.1.15 none 7.1.* | 2020-06-29 | 2020-06-29 |
7.2 | CVE-2020-2029
PAN-OS: OS command injection vulnerability in management interface certificate generator | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none none < 8.1.13 8.0.* < 7.1.26 | >= 9.1.0 >= 9.0.0 >= 8.1.13 none >= 7.1.26 | 2020-06-10 | 2020-06-10 |
7.2 | CVE-2020-2028
PAN-OS: OS command injection vulnerability in FIPS-CC mode certificate verification | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.7 < 8.1.13 8.0.* 7.1.* | >= 9.1.0 >= 9.0.7 >= 8.1.13 none none | 2020-06-10 | 2020-06-10 |
7.2 | CVE-2020-2027
PAN-OS: Buffer overflow in authd authentication response | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.7 < 8.1.13 8.0.* 7.1.* | >= 9.1.0 >= 9.0.7 >= 8.1.13 none none | 2020-06-10 | 2020-06-10 |
9 | CVE-2020-2018
PAN-OS: Panorama authentication bypass vulnerability | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.6 < 8.1.12 8.0.* < 7.1.26 | >= 9.0.6 >= 8.1.12 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
8.8 | CVE-2020-2015
PAN-OS: Buffer overflow in the management server | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.1.1 < 9.0.7 < 8.1.13 8.0.* < 7.1.26 | >= 9.1.1 >= 9.0.7 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
8.8 | CVE-2020-2017
PAN-OS: DOM-Based cross site scripting vulnerability in management web interface | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.6 < 8.1.13 8.0.* < 7.1.26 | >= 9.1.0 >= 9.0.6 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
8.8 | CVE-2020-2014
PAN-OS: OS injection vulnerability in PAN-OS management server | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.7 < 8.1.14 8.0.* 7.1.* | >= 9.1.0 >= 9.0.7 >= 8.1.14 none none | 2020-05-13 | 2020-05-13 |
8.3 | CVE-2020-2013
PAN-OS: Panorama context switch session cookie disclosure | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.1.1 < 9.0.6 < 8.1.13 8.0.* < 7.1.26 | >= 9.1.1 >= 9.0.6 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
8.1 | CVE-2020-2002
PAN-OS: Spoofed Kerberos key distribution center authentication bypass | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.6 < 8.1.13 8.0.* < 7.1.26 | >= 9.0.6 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
8.1 | CVE-2020-2001
PAN-OS: Panorama External control of file vulnerability leads to privilege escalation | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.6 < 8.1.12 8.0.* 7.1.* | >= 9.0.6 >= 8.1.12 none none | 2020-05-13 | 2020-09-11 |
7.8 | PAN-SA-2020-0005
PAN-OS: OpenSSH software upgraded to resolve multiple vulnerabilities | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.1 < 8.1.13 8.0.* < 7.1.26 | >= 9.0.1 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
7.5
N | CVE-2020-2011
PAN-OS: Panorama registration denial of service | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.7 < 8.1.14 8.0.* 7.1.* | >= 9.1.0 >= 9.0.7 >= 8.1.14 none none | 2020-05-13 | 2020-05-20 |
7.5
N | PAN-SA-2020-0006
PAN-OS: Nginx software upgraded to resolve multiple vulnerabilities | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.7 < 8.1.14 8.0.* 7.1.* | >= 9.0.7 >= 8.1.14 none none | 2020-05-13 | 2020-05-13 |
7.5
N | CVE-2020-2012
PAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.7 < 8.1.13 8.0.* 7.1.* | >= 9.1.0 >= 9.0.7 >= 8.1.13 none none | 2020-05-13 | 2020-05-13 |
7.2 | CVE-2020-2006
PAN-OS: Buffer overflow in management server payload parser | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | | | 2020-05-13 | 2020-05-13 |
7.2 | CVE-2020-2007
PAN-OS: OS command injection in management server | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.7 < 8.1.14 8.0.* 7.1.* | >= 9.0.7 >= 8.1.14 none none | 2020-05-13 | 2020-05-13 |
7.2 | CVE-2020-2008
PAN-OS: OS command injection or arbitrary file deletion vulnerability | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none none < 8.1.14 8.0.* 7.1.* | >= 9.1.0 >= 9.0.0 >= 8.1.14 none none | 2020-05-13 | 2020-05-13 |
7.2 | CVE-2020-2009
PAN-OS: Panorama SD WAN arbitrary file creation | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.7 < 8.1.14 8.0.* 7.1.* | >= 9.0.7 >= 8.1.14 none none | 2020-05-13 | 2020-05-13 |
7.2 | CVE-2020-2010
PAN-OS: Authenticated user command injection vulnerability | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.7 < 8.1.14 8.0.* 7.1.* | >= 9.1.0 >= 9.0.7 >= 8.1.14 none none | 2020-05-13 | 2020-05-13 |
7.1 | CVE-2020-2005
PAN-OS: GlobalProtect Clientless VPN session hijacking | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.7 < 8.1.13 8.0.* < 7.1.26 | >= 9.0.7 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
7 | CVE-2020-2016
PAN-OS: Temporary file race condition vulnerability in PAN-OS leads to local privilege escalation | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.6 < 8.1.13 8.0.* < 7.1.26 | >= 9.1.0 >= 9.0.6 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
6.5 | CVE-2020-2003
PAN-OS: Authenticated administrator can delete arbitrary system file | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.1.1 < 9.0.7 < 8.1.14 8.0.* 7.1.* | >= 9.1.1 >= 9.0.7 >= 8.1.14 none none | 2020-05-13 | 2020-05-13 |
5.4 | CVE-2020-1998
PAN-OS: Improper SAML SSO authorization of shared local users | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.1.1 < 9.0.6 < 8.1.13 8.0.* < 7.1.26 | >= 9.1.1 >= 9.0.6 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
5.3
N | CVE-2017-7529
PAN-OS: Nginx integer overflow may lead to information leak | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.6 < 8.1.13 8.0.* < 7.1.26 | >= 9.1.0 >= 9.0.6 >= 8.1.13 none >= 7.1.26 | 2020-05-13 | 2020-05-13 |
5.3
N | CVE-2020-1996
PAN-OS: Panorama management server log injection | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.9 < 8.1.14 8.0.* 7.1.* | >= 9.0.9 >= 8.1.14 none none | 2020-05-13 | 2020-05-29 |
5.3
N | CVE-2020-1997
PAN-OS: GlobalProtect registration open redirect | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none none none < 8.0.14 < 7.1.26 | >= 9.1.0 >= 9.0.0 >= 8.1.0 >= 8.0.14 >= 7.1.26 | 2020-05-13 | 2020-05-13 |
4.9 | CVE-2020-1995
PAN-OS: Management server rasmgr denial of service | | | | 2020-05-13 | 2020-05-13 |
4.1 | CVE-2020-1994
PAN-OS: Predictable temporary file vulnerability | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.7 < 8.1.13 8.0.* 7.1.* | >= 9.1.0 >= 9.0.7 >= 8.1.13 none none | 2020-05-13 | 2020-05-13 |
3.7 | CVE-2020-1993
PAN-OS: GlobalProtect Portal PHP session fixation vulnerability | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.8 < 8.1.14 8.0.* 7.1.* | >= 9.1.0 >= 9.0.8 >= 8.1.14 none none | 2020-05-13 | 2020-05-13 |
0 | PAN-SA-2020-0004
Informational: Third-party or open source vulnerabilities that do not affect PAN-OS | | | | 2020-05-13 | 2020-05-13 |
8.1 | CVE-2020-1992
PAN-OS on PA-7000 Series: Varrcvr daemon network-based denial of service or privilege escalation | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.1.2 on PA-7000 series with LFC < 9.0.7 on PA-7000 series with LFC none none none | >= 9.1.2 on PA-7000 series with LFC >= 9.0.7 on PA-7000 series with LFC 8.1.* 8.0.* 7.1.* | 2020-04-08 | 2020-04-08 |
7.2 | CVE-2020-1990
PAN-OS: Buffer overflow in the management server | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 7.1 | | | 2020-04-08 | 2020-04-08 |
6.8 | PAN-SA-2020-0002
PAN-OS: OpenSSH software upgraded to resolve multiple vulnerabilities | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | < 9.0.7 < 8.1.13 8.0.* < 7.1.26 | >= 9.0.7 >= 8.1.13 none >= 7.1.26 | 2020-04-08 | |
0 | PAN-SA-2020-0003
Informational: Third-party or open source vulnerabilities that do not affect Palo Alto Networks Products | | | | 2020-04-08 | |
8.1 | CVE-2020-1979
PAN-OS: A format string vulnerability in PAN-OS log daemon (logd) on Panorama allows local privilege escalation | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 7.1 | | >= 9.1.0 >= 9.0.0 >= 8.1.13 >= 7.1.0 | 2020-03-11 | 2020-05-12 |
7.8 | CVE-2020-1980
PAN-OS: Shell injection vulnerability in PAN-OS CLI allows execution of shell commands | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 7.1 | | >= 9.1.0 >= 9.0.0 >= 8.1.13 >= 7.1.0 | 2020-03-11 | 2020-03-11 |
7 | CVE-2020-1981
PAN-OS: Predictable temporary filename vulnerability allows local privilege escalation | PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 7.1 | | >= 9.1.0 >= 9.0.0 >= 8.1.13 >= 7.1.0 | 2020-03-11 | 2020-03-11 |
6.8 | CVE-2020-1975
Missing XML Validation in PAN-OS Web Interface | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | | >= 9.0.6 >= 8.1.12 8.0.* 7.1.* | 2020-02-12 | |
10
N | CVE-2019-17440
PAN-OS on PA-7000 Series: Improper restriction of communication to Log Forwarding Card (LFC) allows root access | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 | < 9.0.5-h3 on PA-7000 Series with 2nd Generation SMC none none | >= 9.0.6, 9.0.5-h3 on PA-7000 Series with 2nd Generation SMC 8.1 8.0 | 2019-12-19 | |
7.8 | CVE-2019-17437
PAN-OS: Custom-role users may escalate privileges | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS | < 9.0.5 < 8.1.11 < 8.0.20 < 7.1.25 none | >= 9.0.5 >= 8.1.11 >= 8.0.20 >= 7.1.25 none | 2019-12-04 | |
5.9 | CVE-2019-1559
OpenSSL vulnerability CVE-2019-1559 has been resolved in PAN-OS | PAN-OS all PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none < 9.0.2 < 8.1.8 < 8.0.20 < 7.1.25 | none >= 9.0.2 >= 8.1.8 >= 8.0.20 >= 7.1.25 | 2019-12-04 | |
9.8
N | CVE-2019-1580
Memory Corruption in PAN-OS | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 9.0.3 <= 8.1.9 <= 8.0.19 <= 7.1.24 | >= 9.0.3-h3 >= 8.1.9-h4 >= 8.0.19-h1 >= 7.1.24-h1 | 2019-08-21 | |
9.8
N | CVE-2019-1581
Remote code execution in PAN-OS SSH management interface | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 9.0.3 <= 8.1.9 <= 8.0.19 <= 7.1.24 | >= 9.0.3-h3 >= 8.1.9-h4 >= 8.0.19-h1 >= 7.1.24-h1 | 2019-08-21 | |
7.2 | CVE-2019-1582
Memory Corruption in PAN-OS | | | | 2019-08-21 | |
8.1 | CVE-2019-1579
Remote Code Execution in GlobalProtect Portal/Gateway Interface | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 8.1.2 <= 8.0.11-h1 <= 7.1.18 | >= 8.1.3 >= 8.0.12 >= 7.1.19 | 2019-07-18 | |
8.8 | CVE-2019-1576
Command Injection in PAN-OS | | | | 2019-07-15 | |
8.8 | CVE-2019-1575
Information Disclosure in PAN-OS Management API Usage | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 9.0.2 <= 8.1.8-h4 <= 8.0.18 <= 7.1.23 | >= 9.0.2 >= 8.1.8 >= 8.0.19 >= 7.1.24 | 2019-07-15 | |
7.8 | CVE-2019-8912
Privilege Escalation in PAN-OS | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 9.0.2 <= 8.1.8 <= 8.0.17 <= 7.1.23 | >= 9.0.3 >= 8.1.9 >= 8.0.18 >= 7.1.24 | 2019-07-15 | |
7.5
N | PAN-SA-2019-0013
Information about TCP SACK Panic Findings in PAN-OS | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 9.0.2-h3 <= 8.1.8-h4 <= 8.0.18 <= 7.1.23 | >= 9.0.2-h4 >= 8.1.8-h5 >= 8.0.19 >= 7.1.24 | 2019-06-27 | |
5.6 | PAN-SA-2019-0012
Information about Recent Intel Side Channel Vulnerabilities | PAN-OS WildFire Appliance WildFire Cloud | | | 2019-05-29 | |
0 | PAN-SA-2019-0011
Informational: PAN-OS unexpected open ports | PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | none <= 8.1.1 on with GlobalProtect, <= 8.1.3 on without GlobalProtect <= 8.0.1h-h1 on with GlobalProtect, <= 8.0.13 on without GlobalProtect none | 9.0.* >= 8.1.2 on with GlobalProtect, >= 8.1.4 on without GlobalProtect >= 8.0.12 on with GlobalProtect, >= 8.0.14 on without GlobalProtect 7.1.* | 2019-05-15 | |
7.5
N | CVE-2019-1572
Authentication Bypass in PAN-OS Management Web Interface | | | | 2019-03-28 | |
7.8 | CVE-2018-14634
Privilege Escalation in PAN-OS | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 8.1.6 <= 8.0.15 <= 7.1.22 | >= 8.1.7 >= 8.0.16 >= 7.1.23 | 2019-03-20 | |
6.5 | CVE-2018-18065
Denial of Service in PAN-OS Management Interface | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 8.1.6 <= 8.0.15 <= 7.1.22 | >= 8.1.7 >= 8.0.16 >= 7.1.23 | 2019-03-20 | |
6.1 | CVE-2019-1566
Cross-Site Scripting (XSS) in PAN-OS Management Web Interface | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 8.1.5 <= 8.0.14 <= 7.1.21 | >= 8.1.6 >= 8.0.15 >= 7.1.22 | 2019-01-23 | |
5.4 | CVE-2019-1565
Cross-Site Scripting (XSS) in PAN-OS External Dynamic Lists | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 | <= 8.1.5 <= 8.0.14 <= 7.1.21 | >= 8.1.6 >= 8.0.15 >= 7.1.22 | 2019-01-23 | |
7.5
N | PAN-SA-2018-0015
OpenSSL Vulnerabilities in PAN-OS | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | <= 8.1.3 <= 8.0.13 <= 7.1.20 <= 6.1.20 | >= 8.1.4 >= 8.0.14 >= 7.1.21 none | 2018-10-12 | |
6.1 | CVE-2018-10141
Cross-Site Scripting (XSS) in GlobalProtect Portal Login Page | | | | 2018-10-12 | |
7.5
N | CVE-2018-5391
Information about FragmentSmack findings | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | <= 8.1.4 <= 8.0.12 <= 7.1.19 <= 6.1.21 | >= 8.1.5 >= 8.0.13 >= 7.1.20 >= 6.1.22 | 2018-09-19 | |
0 | CVE-2018-5390
Information about SegmentSmack findings | | | | 2018-09-19 | |
0 | PAN-SA-2018-0011
Information about L1 Terminal Fault findings | | | | 2018-08-17 | |
6.1 | CVE-2018-10139
Cross-Site Scripting (XSS) in GlobalProtect Gateway | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | none <= 8.0.11 <= 7.1.18 <= 6.1.21 | >= 8.1.0 >= 8.0.12 >= 7.1.19 >= 6.1.21 | 2018-08-15 | |
4.3 | CVE-2018-10140
Denial of Service in PAN-OS Management Web Interface | | | | 2018-08-15 | |
8.1 | CVE-2018-8715
Denial of Service in PAN-OS Management Web Interface | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | none <= 8.0.9 <= 7.1.16 <= 6.1.20 | >= 8.1.1 >= 8.0.10 >= 7.1.17 >= 6.1.21 | 2018-07-20 | |
5.5 | CVE-2018-9242
Local Privilege Escalation in Management Web Interface | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | <= 8.0.9 <= 7.1.16 <= 6.1.20 | >= 8.0.10 >= 7.1.17 >= 6.1.21 | 2018-06-29 | |
5.5 | CVE-2018-9334
Information Disclosure in the PAN-OS Management Web Interface | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | none <= 8.0.8 <= 7.1.16 <= 6.1.20 | >= 8.1.1 >= 8.0.9 >= 7.1.17 >= 6.1.21 | 2018-06-29 | |
5.4 | CVE-2018-9335
Cross-Site Scripting (XSS) in PAN-OS Management Web Interface | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | <= 8.1.1 <= 8.0.9 <= 7.1.16 <= 6.1.20 | >= 8.1.2 >= 8.0.10 >= 7.1.17 >= 6.1.21 | 2018-06-29 | |
5.4 | CVE-2018-9337
Cross-Site Scripting (XSS) in PAN-OS Management Web Interface | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | <= 8.1.1 <= 8.0.10 <= 7.1.17 <= 6.1.20 | >= 8.1.2 >= 8.0.11-h1 >= 7.1.18 >= 6.1.21 | 2018-06-29 | |
6.1 | CVE-2018-7636
Cross Site Scripting in PAN-OS | PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | | 8.1.* >= 8.0.11-h1 7.1.* 6.1.* | 2018-06-27 | |
0 | PAN-SA-2018-0001
Information about Meltdown and Spectre findings | | | | 2018-01-05 | |
6.1 | CVE-2017-15941
Cross Site Scripting Vulnerability in PAN-OS GlobalProtect | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.6-h3 <= 7.1.13 <= 7.0.18 <= 6.1.18 | >= 8.0.7 >= 7.1.14 >= 7.0.19 >= 6.1.19 | 2018-01-02 | |
6.1 | CVE-2017-16878
Cross Site Scripting in PAN-OS Captive Portal | | | | 2018-01-02 | |
5.9 | CVE-2017-17841
ROBOT attack against PAN-OS | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 6.1 | <= 8.0.6-h3 <= 7.1.14 <= 6.1.19 | >= 8.0.7 >= 7.1.15 >= 6.1.20 | 2018-01-02 | 2022-06-24 |
9.8
N | CVE-2017-15940
Command Injection in PAN-OS | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.6 <= 7.1.13 <= 7.0.18 <= 6.1.18 | >= 8.0.6 >= 7.1.14 >= 7.0.19 >= 6.1.19 | 2017-12-06 | |
9.8
N | CVE-2017-15944
Vulnerability in PAN-OS and Panorama on Management Interface | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | none <= 7.1.13 <= 7.0.18 <= 6.1.18 | >= 8.0.6, >= 8.0 >= 7.1.14 >= 7.0.19 >= 6.1.19 | 2017-12-06 | |
5.3
N | CVE-2017-15943
Server-Side Request Forgery in PAN-OS | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 7.1.13 <= 7.0.18 <= 6.1.18 | >= 7.1.14 >= 7.0.19 >= 6.1.19 | 2017-12-06 | |
7.5
N | CVE-2017-15942
Denial of Service Against GlobalProtect | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.5 <= 7.1.12 <= 7.0.18 <= 6.1.18 | >= 8.0.6 >= 7.1.13 >= 7.0.19 >= 6.1.19 | 2017-12-06 | 2020-05-18 |
9.8
N | CVE-2017-9458
XML External Entity (XXE) in PAN-OS | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.2 <= 7.1.11 <= 7.0.16 <= 6.1.17 | >= 8.0.3 >= 7.1.12 >= 7.0.17 >= 6.1.18 | 2017-08-30 | |
6.1 | CVE-2017-12416
Cross-Site Scripting in PAN-OS | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.2 <= 7.1.11 <= 7.0.16 <= 6.1.17 | >= 8.0.3 >= 7.1.12 >= 7.0.17 >= 6.1.18 | 2017-08-30 | |
8.8 | CVE-2017-6460
NTP Vulnerability | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.3 <= 7.1.11 <= 7.0.17 6.1.* | >= 8.0.4 >= 7.1.12 >= 7.0.18 none | 2017-07-27 | |
9.8
N | CVE-2017-8390
Vulnerability in the PAN-OS DNS Proxy | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.2 <= 7.1.9 <= 7.0.15 <= 6.1.17 | >= 8.0.3 >= 7.1.10 >= 7.0.16 >= 6.1.18 | 2017-07-20 | |
6.1 | CVE-2017-9467
Cross-Site Scripting in PAN-OS | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.2 <= 7.1.10 <= 7.0.15 <= 6.1.17 | >= 8.0.3 >= 7.1.11 >= 7.0.16 >= 6.1.18 | 2017-07-20 | |
6.1 | CVE-2017-9459
Cross-Site Scripting in the Management Web Interface | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.2 <= 7.1.10 <= 7.0.15 <= 6.1.17 | >= 8.0.3 >= 7.1.11 >= 7.0.16 >= 6.1.18 | 2017-07-20 | |
9.8
N | CVE-2016-10229
Kernel Vulnerability | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.2 <= 7.1.10 7.0.* <= 6.1.17 | >= 8.0.3 >= 7.1.11 none >= 6.1.18 | 2017-06-19 | |
7.5
N | CVE-2016-8610
OpenSSL Vulnerability | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 7.1.10 <= 7.0.15 <= 6.1.17 | >= 7.1.11 >= 7.0.16 >= 6.1.18 | 2017-06-07 | |
8.8 | CVE-2016-4971
WGET Vulnerability | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | none <= 7.1.9 <= 7.0.14 <= 6.1.16 | >= 8.0.1 >= 7.1.10 >= 7.0.15 >= 6.1.17 | 2017-05-23 | |
4.8 | CVE-2016-5696
Kernel Vulnerability | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | | | 2017-05-23 | |
9.8
N | CVE-2017-7945
Brute force attack on the PAN-OS GlobalProtect external interface | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 8.0.1 <= 7.1.8 <= 7.0.14 <= 6.1.16 | >= 8.0.2 >= 7.1.9 >= 7.0.15 >= 6.1.17 | 2017-04-28 | |
6.5 | CVE-2017-7644
Information Disclosure in the Management Web Interface | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 7.1.8 <= 7.0.14 <= 6.1.16 | >= 7.1.9 >= 7.0.15 >= 6.1.17 | 2017-04-28 | |
6.1 | CVE-2017-7409
Cross-Site Scripting in PAN-OS | | | | 2017-04-20 | |
7.5
N | CVE-2017-3731
OpenSSL Vulnerability | PAN-OS 8.0 PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | | >= 8.0.2 >= 7.1.10 >= 7.0.15 none | 2017-04-20 | |
6.5 | CVE-2017-7216
Information Disclosure in the Management Web Interface | | | | 2017-04-10 | |
7.8 | CVE-2017-7218
Local Privilege Escalation in the Management Web Interface | | | | 2017-04-10 | |
4.3 | CVE-2017-7217
Tampering of temporary export files in the Management Web Interface | | | | 2017-04-10 | |
6.5 | CVE-2017-5583
Information Disclosure in the Management Web Interface | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 | <= 7.1.7 <= 7.0.12 <= 6.1.15 | >= 7.1.8 >= 7.0.13 >= 6.1.16 | 2017-02-21 | |
5.4 | CVE-2017-5584
Cross-Site Scripting in the Management Web Interface | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 | <= 7.1.7 <= 7.0.12 <= 6.1.15 6.0.* 5.1.* | >= 7.1.8 >= 7.0.13 >= 6.1.16 none none | 2017-02-21 | |
7.8 | CVE-2016-5195
Kernel Vulnerability | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 | <= 7.1.7 <= 7.0.13 6.1.* 6.0.* 5.1.* | >= 7.1.8 >= 7.0.14 none none none | 2017-02-21 | |
6.5 | CVE-2016-9149
XPath Injection | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.5 <= 7.0.10 <= 6.1.14 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.6 >= 7.0.11 >= 6.1.15 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-11-17 | |
5.9 | CVE-2016-6210
OpenSSH Vulnerability | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.5 <= 7.0.10 <= 6.1.14 <= 6.0.14 5.1.* 5.0.* | >= 7.1.6 >= 7.0.11 >= 6.1.15 >= 6.0.15 none none | 2016-11-17 | |
9.8
N | CVE-2016-9150
Buffer Overflow in the Management Web Interface | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.5 <= 7.0.10 <= 6.1.14 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.6 >= 7.0.11 >= 6.1.15 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-11-17 | |
7.8 | CVE-2016-9151
Local Privilege Escalation | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.5 <= 7.0.10 <= 6.1.14 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.6 >= 7.0.11 >= 6.1.15 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-11-17 | |
5.4 | PAN-SA-2016-0033
Cross-Site Scripting in Captive Portal | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.4 <= 7.0.10 <= 6.1.14 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.5 >= 7.0.11 >= 6.1.15 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-10-31 | |
6.8 | PAN-SA-2016-0032
Insecure Browser API Token Generation | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.4 <= 7.0.10 <= 6.1.14 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.5 >= 7.0.11 >= 6.1.15 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-10-31 | |
5.8 | PAN-SA-2016-0031
Cross-Site Scripting in Web Interface | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.4 <= 7.0.9 <= 6.1.13 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.5 >= 7.0.10 >= 6.1.14 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-10-18 | |
5.9 | PAN-SA-2016-0030
OpenSSL Vulnerabilities | | | | 2016-10-18 | |
8.8 | PAN-SA-2016-0029
Insecure Server Configuration | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.0.7 <= 6.1.12 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.0.8 >= 6.1.13 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-10-18 | |
7.5
N | PAN-SA-2016-0028
OpenSSL Vulnerabilities | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.0.7 <= 6.1.12 <= 6.0.13 <= 5.1.12 <= 5.0.19 | >= 7.0.8 >= 6.1.13 >= 6.0.14 >= 5.1.13 >= 5.0.20 | 2016-10-18 | |
5.3
N | CVE-2014-9708
Web interface denial of service | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.5 <= 7.0.10 <= 6.1.14 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.6 >= 7.0.11 >= 6.1.15 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-10-11 | |
0 | PAN-SA-2016-0026
GlobalProtect Portal Version Disclosure | | | | 2016-10-04 | |
7.5
N | PAN-SA-2016-0025
Kernel Vulnerabilities | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.4 <= 7.0.10 <= 6.1.14 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.5 >= 7.0.11 >= 6.1.15 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-10-04 | |
5.3
N | PAN-SA-2016-0024
Web interface denial of service | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 | <= 7.1.2 <= 7.0.8 <= 6.1.12 <= 6.0.13 <= 5.1.11 | >= 7.1.3 >= 7.0.9 >= 6.1.13 >= 6.0.14 >= 5.1.12 | 2016-09-08 | |
8.1 | CVE-2015-7547
Glibc DNS Resolver Vulnerability | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.3 <= 7.0.7 <= 6.1.12 <= 6.0.14 <= 5.1.12 <= 5.0.19 | >= 7.1.4 >= 7.0.8 >= 6.1.13 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-08-15 | |
8.1 | PAN-SA-2016-0020
OpenSSL Vulnerabilities | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 | <= 7.1.3 <= 7.0.8 <= 6.1.12 <= 6.0.13 | >= 7.1.4 >= 7.0.9 >= 6.1.13 >= 6.0.14 | 2016-08-15 | |
7.5
N | PAN-SA-2016-0019
NTP Vulnerabilities | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.3 <= 7.0.8 <= 6.1.12 <= 6.0.1 <= 5.1.12 <= 5.0.19 | >= 7.1.4 >= 7.0.9 >= 6.1.13 >= 6.0.15 >= 5.1.13 >= 5.0.20 | 2016-08-15 | |
7.8 | PAN-SA-2016-0016
Web Interface Privilege Escalation | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.0.4 <= 6.1.10 <= 6.0.13 <= 5.1.11 <= 5.0.18 | >= 7.0.5 >= 6.1.11 >= 6.0.14 >= 5.1.12 >= 5.0.19 | 2016-07-15 | |
6.4 | PAN-SA-2016-0015
Cron local privilege escalation | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.1.1 <= 7.0.6 <= 6.1.11 <= 6.0.13 <= 5.1.11 <= 5.0.18 | >= 7.1.2 >= 7.0.7 >= 6.1.12 >= 6.0.14 >= 5.1.12 >= 5.0.19 | 2016-07-14 | |
4.6 | PAN-SA-2016-0014
Cross-site scripting issue in policy | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.0.7 <= 6.1.11 <= 6.0.13 <= 5.1.11 <= 5.0.18 | >= 7.0.8 >= 6.1.12 >= 6.0.14 >= 5.1.12 >= 5.0.19 | 2016-07-14 | |
5.3
N | PAN-SA-2016-0013
Captive Portal denial of service | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.0 | <= 7.1.1 <= 7.0.6 <= 6.1.11 <= 6.0.13 <= 5.0.18 | >= 7.1.2 >= 7.0.7 >= 6.1.12 >= 6.0.14 >= 5.0.19 | 2016-07-14 | |
7.8 | CVE-2016-1712
Local privilege escalation | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.0.7 <= 6.1.11 <= 6.0.13 <= 5.1.11 <= 5.0.18 | >= 7.0.8 >= 6.1.12 >= 6.0.14 >= 5.1.12 >= 5.0.19 | 2016-07-13 | |
8.1 | PAN-SA-2016-0011
OpenSSH vulnerabilities | | | | 2016-07-12 | |
5.4 | CVE-2016-2219
Cross-site scripting vulnerability | | | | 2016-06-27 | |
5.3
N | PAN-SA-2016-0008
PAN-OS API denial of service | | | | 2016-06-27 | |
4.6 | PAN-SA-2016-0006
HTTP Header Evasion | PAN-OS 7.1 PAN-OS 7.0 PAN-OS 6.0 PAN-OS 5.0 | | | 2016-04-18 | |
9.8
N | CVE-2016-3655
Unauthenticated Command Injection in Management Web Interface | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.0 | <= 7.0.4 <= 6.1.9 <= 6.0.12 <= 5.0.17 | >= 7.0.5 >= 6.1.10 >= 6.0.13 >= 5.0.18 | 2016-02-24 | |
9.8
N | CVE-2016-3657
Unauthenticated Buffer Overflow in GlobalProtect/SSL VPN Web Interface | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.0 | <= 7.0.4 <= 6.1.9 <= 6.0.12 <= 5.0.17 | >= 7.0.5 >= 6.1.10 >= 6.0.13 >= 5.0.18 | 2016-02-24 | |
7.5
N | CVE-2016-3656
Unauthenticated Stack Exhaustion in GlobalProtect/SSL VPN Web Interface | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.0 | <= 7.0.5 <= 6.1.9 <= 6.0.12 <= 5.0.17 | >= 7.0.5H2 >= 6.1.10 >= 6.0.13 >= 5.0.18 | 2016-02-24 | |
7.2 | CVE-2016-3654
Command Injection in Command Line Interface | PAN-OS 7.0 PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 7.0.5 <= 6.1.9 <= 6.0.12 <= 5.1.10 <= 5.0.17 | >= 7.0.5H2 >= 6.1.10 >= 6.0.13 >= 5.1.11 >= 5.0.18 | 2016-02-24 | |
2.2 | PAN-SA-2015-0006
API key automatic revocation | | | | 2015-11-09 | |
9.8
N | PAN-SA-2015-0005
Device management authentication bypass | | | | 2015-07-24 | |
4.4 | CVE-2015-4162
XML External Entity (XXE) Vulnerability | PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.0 | <= 6.1.3 <= 6.0.7 <= 5.0.15 | >= 6.1.4 >= 6.0.8 >= 5.0.16 | 2015-05-29 | |
5.7 | PAN-SA-2015-0003
Cross-site Scripting Vulnerability | PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.0 | <= 6.1.2 <= 6.0.8 <= 5.0.15 | >= 6.1.3 >= 6.0.9 >= 5.0.16 | 2015-05-14 | |
0 | CVE-2015-0235
GHOST: glibc vulnerability | | | | 2015-02-02 | |
3.7 | CVE-2014-8730
Padding-oracle attack on TLS CBC cipher mode | PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.0 | <= 6.1.1 <= 6.0.8 <= 5.0.15 | | 2015-01-12 | |
4.3 | CVE-2014-3764
Cross-site scripting vulnerability | PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 6.0.5 <= 5.1.9 <= 5.0.14 | >= 6.0.6 >= 5.1.10 >= 5.0.15 | 2014-12-22 | |
3.4 | CVE-2014-3566
SSL 3.0 MITM Attack | | | | 2014-10-20 | |
0 | PAN-SA-2014-0004
Bash Shell remote code execution (CVE-2014-6271, CVE-2014-7169) | PAN-OS 6.1 PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | <= 6.1.0 <= 6.0.5 <= 5.1.9 <= 5.0.14 | >= 6.1.1. >= 6.0.6 >= 5.1.10 >= 5.0.15 | 2014-09-24 | |
7.4 | CVE-2014-0224
OpenSSL Man-in-the-middle vulnerability | PAN-OS 6.0 PAN-OS 5.1 PAN-OS 5.0 | | >= 6.0.4 >= 5.1.9 >= 5.0.14. | 2014-06-09 | |
6.1 | PAN-SA-2014-0002
Cross-site Scripting Vulnerability | | | | 2014-01-29 | |
5.3 | PAN-SA-2014-0001
Management API Key Bypass | PAN-OS 5.1 PAN-OS 5.0 PAN-OS 4.1 | <= 5.1.4 <= 5.0.9 <= 4.1.15 | >= 5.1.5 >= 5.0.10 >= 4.1.16 | 2014-01-29 | |
4.7 | CVE-2013-5664
Cross-site Scripting Vulnerability | | | | 2013-07-22 | |
3.7 | CVE-2013-5663
App-ID Cache Poisoning | PAN-OS 5.0 PAN-OS 4.1 PAN-OS 4.0 | | >= 5.0.2 >= 4.1.11 >= 4.0.14 | 2013-01-07 | |
9.8
N | CVE-2012-6593
Command Injection Vulnerability | | | | 2012-04-27 | |
9.8
N | CVE-2012-6592
Command Injection Vulnerability | | | | 2012-04-27 | |
9.8
N | CVE-2012-6603
Credential Bypass Vulnerability | PAN-OS 4.1 PAN-OS 4.0 PAN-OS 3.1 | <= 4.1.3 <= 4.0.9 <= 3.1.11 | >= 4.1.4 >= 4.0.10 >= 3.1.12 | 2012-04-27 | |
8.4 | CVE-2012-6599
Command Injection Vulnerability | | | | 2012-04-27 | |
8.4 | CVE-2012-6598
Command Injection Vulnerability | | | | 2012-04-27 | |
8.4 | CVE-2012-6600
Command Injection Vulnerability | | | | 2012-04-27 | |
8.4 | CVE-2012-6601
Command Injection Vulnerability | PAN-OS 4.1 PAN-OS 4.0 PAN-OS 3.1 | <= 4.1.3 <= 4.0.9 <= 3.1.11 | >= 4.1.4 >= 4.0.10 >= 3.1.12 | 2012-04-27 | |
8.4 | CVE-2012-6604
Command Injection Vulnerability | | | | 2012-04-27 | |
8.4 | CVE-2012-6605
Command Injection Vulnerability | | | | 2012-04-27 | |
8.4 | CVE-2012-6594
Command Injection Vulnerability | PAN-OS 4.1 PAN-OS 4.0 PAN-OS 3.1 | <= 4.1.0 <= 4.0.7 <= 3.1.10 | >= 4.1.1 >= 4.0.8 >= 3.1.11 | 2012-04-27 | |
8.4 | CVE-2012-6595
Command Injection Vulnerability | | | | 2012-04-27 | |
8.4 | CVE-2012-6602
Command Injection Vulnerability | | | | 2012-04-27 | |
8 | CVE-2012-6591
Command Injection Vulnerability | | | | 2012-04-27 | |
6.2 | CVE-2012-6596
LDAP Passwords Logged in Clear Text | | | | 2012-04-27 | |
5.5 | CVE-2012-6597
Management Server DOS Vulnerability | | | | 2012-04-27 | |
3.7 | CVE-2011-4108
OpenSSL Plain Text Recovery Attack Vulnerability | PAN-OS 4.1 PAN-OS 4.0 PAN-OS 3.1 | <= 4.1.2 <= 4.0.9 <= 3.1.11 | >= 4.1.3 >= 4.0.10 >= 3.1.12 | 2012-04-27 | |
3.1 | CVE-2012-6590
Verbose Error Messages | | | | 2012-04-27 | |
=
Exploitable over the network with low complexity, unauthenticated attack.