Palo Alto Networks Security Advisories

Clear
version
severity
product
Clear
1 - 25 of 403
VersionsAffectedUnaffected
6.1PAN-SA-2026-0003 Chromium: Monthly Vulnerability Update (March 2026)
Prisma Browser
< 145.7.9.76
>= 145.7.9.76
2026-03-112026-03-11
8.1PAN-SA-2026-0002 Chromium: Monthly Vulnerability Update (February 2026)
Prisma Browser
< 144.27.7.133
>= 144.27.7.133
2026-02-112026-02-11
6.6CVE-2026-0229 PAN-OS: Denial of Service in Advanced DNS Security Feature
Cloud NGFW
PAN-OS Firewall 12.1.0
PAN-OS Firewall 11.2.0
PAN-OS Firewall 11.1.0
PAN-OS Firewall 10.2.0
Panorama
Prisma Access
None
< 12.1.4
< 11.2.10
None
None
None
None
All
>= 12.1.4
>= 11.2.10
11.1.0
10.2.0
All
All
2026-02-112026-02-19
1.3CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate
Cloud NGFW
PAN-OS 12.1
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
Prisma Access
None
None
< 11.2.8
< 11.1.11
< 10.2.17
< 10.2.10-h28 on PAN-OS, < 11.2.7-h10 on PAN-OS
All
All
>= 11.2.8
>= 11.1.11
>= 10.2.17
>= 10.2.10-h28 on PAN-OS, >= 11.2.7-h10 on PAN-OS
2026-02-112026-02-11
6.1PAN-SA-2026-0001 Chromium: Monthly Vulnerability Update (January 2026)
Prisma Browser
< 142.21.4.163
>= 143.37.2.193
2026-01-142026-01-14
7.7CVE-2026-0227 PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal
Cloud NGFW
PAN-OS 12.1
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access 11.2
Prisma Access 10.2
None
< 12.1.3-h3, < 12.1.4
< 11.2.4-h15, < 11.2.7-h8, < 11.2.10-h2
< 11.1.4-h27, < 11.1.6-h23, < 11.1.10-h9, < 11.1.13
< 10.2.7-h32, < 10.2.10-h31, < 10.2.13-h18, < 10.2.16-h6, < 10.2.18-h1
< 10.1.14-h20
< 11.2.7-h8*
< 10.2.4-h43*, < 10.2.10-h29*
All
>= 12.1.3-h3, >= 12.1.4
>= 11.2.4-h15, >= 11.2.7-h8, >= 11.2.10-h2
>= 11.1.4-h27, >= 11.1.6-h23, >= 11.1.10-h9, >= 11.1.13
>= 10.2.7-h32, >= 10.2.10-h31, >= 10.2.13-h18, >= 10.2.16-h6, >= 10.2.18-h1
>= 10.1.14-h20
>= 11.2.7-h8*
>= 10.2.4-h43*, >= 10.2.10-h29*
2026-01-142026-02-09
6.6CVE-2025-4619 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Packets
Cloud NGFW
PAN-OS 12.1
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
< 11.2.2-h2, < 11.2.3-h6, < 11.2.4-h4, < 11.2.5
>= 11.1.2-h9, < 11.1.2-h18, >= 11.1.3-h2, >= 11.1.4-h4, < 11.1.4-h13, < 11.1.6-h1, < 11.1.7
>= 10.2.4-h25, >= 10.2.7-h11, < 10.2.7-h24, >= 10.2.8-h10, < 10.2.8-h21, >= 10.2.9-h6, < 10.2.9-h21, >= 10.2.10-h2, < 10.2.10-h14, < 10.2.11-h12, < 10.2.12-h6, < 10.2.13-h3, < 10.2.14
None
>= 10.2.4-h25 on PAN-OS, < 10.2.10-h14 on PAN-OS, < 11.2.4-h4 on PAN-OS
All
All
>= 11.2.2-h2, >= 11.2.3-h6, >= 11.2.4-h4, >= 11.2.5
< 11.1.2-h9, >= 11.1.2-h18, < 11.1.3-h2, < 11.1.4-h4, >= 11.1.4-h13, >= 11.1.6-h1, >= 11.1.7
< 10.2.4-h25, < 10.2.7-h11, >= 10.2.7-h24, < 10.2.8-h10, >= 10.2.8-h21, < 10.2.9-h6, >= 10.2.9-h21, < 10.2.10-h2, >= 10.2.10-h14, >= 10.2.11-h12, >= 10.2.12-h6, >= 10.2.13-h3, >= 10.2.14
All
< 10.2.4-h25 on PAN-OS, >= 10.2.10-h14 on PAN-OS, >= 11.2.4-h4 on PAN-OS
2025-11-122025-11-12
6.1PAN-SA-2025-0018 Chromium and Prisma Browser: Monthly Vulnerability Update (November 2025)
Prisma Browser
< 142.15.2.60
>= 142.15.6.60
2025-11-122025-11-12
iPAN-SA-2025-0017 Informational Bulletin: Impact of OSS CVEs in Prisma SD-WAN ION
Prisma SD-WAN ION
None
All
2025-11-022025-11-03
6.1PAN-SA-2025-0016 Chromium: Monthly Vulnerability Update (October 2025)
Prisma Browser
< 139.18.2.139
>= 141.6.4.55
2025-10-082025-10-08
1.1CVE-2025-4614 PAN-OS: Session Token Disclosure Vulnerability
Cloud NGFW
PAN-OS 12.1
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
Prisma Access
None
None
< 11.2.8
< 11.1.6-h21
< 10.2.17
None
All
All
>= 11.2.8
>= 11.1.6-h21
>= 10.2.17
All
2025-10-082025-10-08
5.4CVE-2025-4615 PAN-OS: Improper Neutralization of Input in the Management Web Interface
Cloud NGFW
PAN-OS 12.1
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
Prisma Access
None
None
< 11.2.8
< 11.1.4-h27, < 11.1.6-h21, < 11.1.10-h7
< 10.2.17
None
All
All
>= 11.2.8
>= 11.1.4-h27, >= 11.1.6-h21, >= 11.1.10-h7
>= 10.2.17
All
2025-10-082026-04-01
6.1PAN-SA-2025-0015 Chromium: Monthly Vulnerability Update (September 2025)
Prisma Browser
< 139.12.4.128
>= 139.12.4.128
2025-09-102025-09-10
4.2CVE-2025-4235 User-ID Credential Agent: Cleartext Exposure of Service Account password
User-ID Credential Agent 11.0.0
>= 11.0.2-133 on Windows, < 11.0.3 on Windows
< 11.0.2-133 on Windows, >= 11.0.3 on Windows
2025-09-102025-09-10
3.3CVE-2025-2182 PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK)
Cloud NGFW
PAN-OS
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None on devices other than PA-7500
< 11.2.8 on PA-7500
< 11.1.10 on PA-7500
None on PA-7500
None on PA-7500
None
All
All on devices other than PA-7500
>= 11.2.8 on PA-7500
>= 11.1.10 on PA-7500
All on PA-7500
All on PA-7500
All
2025-08-132025-08-13
6.1PAN-SA-2025-0014 Chromium: Monthly Vulnerability Update (August 2025)
Prisma Browser
< 138.53.6.158
>= 138.69.4.184
2025-08-132025-08-13
4.3CVE-2025-2179 GlobalProtect App: Non Admin User Can Disable the GlobalProtect App
GlobalProtect App
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect UWP App
None on Android, None on Chrome OS, None on iOS, None on Windows, None on macOS
< 6.2.9 on Linux
All on Linux
All on Linux
None
All on Android, All on Chrome OS, All on iOS, All on Windows, All on macOS
>= 6.2.9 on Linux
None on Linux
None on Linux
All
2025-07-282025-07-28
iPAN-SA-2025-0012 Informational Bulletin: OSS CVEs Fixed in PAN-OS
PAN-OS
2025-07-092025-07-09
8.6PAN-SA-2025-0013 Chromium: Monthly Vulnerability Update (July 2025)
Prisma Browser
< 137.16.6.120
>= 138.33.5.97
2025-07-092025-07-09
5.7CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.6
< 11.1.6-h14, < 11.1.10
< 10.2.10-h27
< 10.1.14-h15
None
All
>= 11.2.6
>= 11.1.6-h14, >= 11.1.10
>= 10.2.10-h27
>= 10.1.14-h15
All
2025-06-112025-06-30
6.1CVE-2025-4231 PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
None
< 11.0.3
< 10.2.8
All
None
All
All
All
>= 11.0.3
>= 10.2.8
None
All
2025-06-112025-06-11
2.3CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.7
< 11.1.10
< 10.2.16-h1, < 10.2.17
< 10.1.14-h16
None
All
>= 11.2.7
>= 11.1.10
>= 10.2.16-h1, >= 10.2.17 [ETA: Aug 2025]
>= 10.1.14-h16
All
2025-06-112025-06-30
8.6PAN-SA-2025-0011 Chromium and Prisma Browser: Monthly Vulnerability Update (June 2025)
Prisma Browser
< 136.24.1.93
>= 137.16.2.69
2025-06-112025-06-11
1.3CVE-2025-0136 PAN-OS: Unencrypted Data Transfer when using AES-128-CCM on Intel-based hardware devices
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
< 11.1.5
< 11.0.7
< 10.2.11
< 10.1.14-h14
None
All
All
>= 11.1.5
>= 11.0.7
>= 10.2.11
>= 10.1.14-h14
All
2025-05-142025-05-14
1.1CVE-2025-0137 PAN-OS: Improper Neutralization of Input in the Management Web Interface
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.5
< 11.1.6-h14, < 11.1.8
< 10.2.13
< 10.1.14-h14
None
All
>= 11.2.5
>= 11.1.6-h14, >= 11.1.8
>= 10.2.13
>= 10.1.14-h14
All
2025-05-142025-07-11
1 - 25 of 403 Download
Terms of usePrivacyProduct Security Assurance and Vulnerability Disclosure PolicyReport vulnerabilitiesManage subscriptions
© 2026 Palo Alto Networks, Inc. All rights reserved.