Palo Alto Networks Security Advisories

1 - 25 of 114

CVSS	Summary	Versions	Affected	Unaffected	Published	Updated
8.1	CVE-2020-2034 PAN-OS: OS command injection vulnerability in GlobalProtect portal	PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1	< 9.1.3 < 9.0.9 < 8.1.15 8.0.* 7.1.*	>= 9.1.3 >= 9.0.9 >= 8.1.15	2020-07-08	2020-07-10
7.2	CVE-2020-2030 PAN-OS: OS command injection vulnerability in the management interface	PAN-OS 8.1 PAN-OS 8.0 PAN-OS 7.1	< 8.1.15 8.0.* 7.1.*	>= 9.0.0 >= 8.1.15 >= 9.1.0	2020-07-08	2020-07-08
10 N	CVE-2020-2021 PAN-OS: Authentication Bypass in SAML Authentication	PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0 PAN-OS 9.1	8.0.* < 8.1.15 < 9.0.9 < 9.1.3	7.1.* >= 8.1.15 >= 9.0.9 >= 9.1.3	2020-06-29	2020-06-29
7.2	CVE-2020-2028 PAN-OS: OS command injection vulnerability in FIPS-CC mode certificate verification	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 8.1.13 < 9.0.7 7.1.* 8.0.*	>= 8.1.13 >= 9.0.7 >= 9.1.0	2020-06-10	2020-06-10
7.2	CVE-2020-2027 PAN-OS: Buffer overflow in authd authentication response	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 8.1.13 < 9.0.7 7.1.* 8.0.*	>= 8.1.13 >= 9.0.7 >= 9.1.0	2020-06-10	2020-06-10
7.2	CVE-2020-2029 PAN-OS: OS command injection vulnerability in management interface certificate generator	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1	< 7.1.26 < 8.1.13 8.0.*	>= 9.0.0 >= 7.1.26 >= 8.1.13 >= 9.1.0	2020-06-10	2020-06-10
7	CVE-2020-2032 GlobalProtect App: File race condition vulnerability leads to local privilege escalation during upgrade	GlobalProtect App 5.0 GlobalProtect App 5.1	< 5.1.4 on Windows < 5.0.10 on Windows	>= 5.1.4 on Windows >= 5.0.10 on Windows	2020-06-10	2020-06-10
8.8	CVE-2020-2015 PAN-OS: Buffer overflow in the management server	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0 PAN-OS 9.1	< 9.0.7 < 7.1.26 < 8.1.13 < 9.1.1 8.0.*	>= 9.0.7 >= 7.1.26 >= 8.1.13 >= 9.1.1	2020-05-13	2020-06-10
8.8	CVE-2020-2017 PAN-OS: DOM-Based cross site scripting vulnerability in management web interface	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 7.1.26 < 8.1.13 < 9.0.6 8.0.*	>= 7.1.26 >= 8.1.13 >= 9.0.6 >= 9.1.0	2020-05-13	2020-06-10
7	CVE-2020-2016 PAN-OS: Temporary file race condition vulnerability in PAN-OS leads to local privilege escalation	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 7.1.26 < 8.1.13 < 9.0.6 8.0.*	>= 7.1.26 >= 8.1.13 >= 9.0.6 >= 9.1.0	2020-05-13	2020-06-10
7.5 N	CVE-2020-2012 PAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 8.1.13 < 9.0.7 8.0.* 7.1.*	>= 8.1.13 >= 9.0.7 >= 9.1.0	2020-05-13	2020-06-10
7.2	CVE-2020-2010 PAN-OS: Authenticated user command injection vulnerability	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 9.0.7 < 8.1.14 8.0.* 7.1.*	>= 9.0.7 >= 8.1.14 >= 9.1.0	2020-05-13	2020-06-10
7.5 N	CVE-2020-2011 PAN-OS: Panorama registration denial of service	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 8.1.14 < 9.0.7 7.1.* 8.0.* 8.0.*	>= 8.1.14 >= 9.0.7 >= 9.1.0	2020-05-13	2020-05-20
7.5 N	CVE-2017-15942 Denial of Service Against GlobalProtect	PAN-OS 6.1 PAN-OS 7.0 PAN-OS 7.1 PAN-OS 8.0	<= 6.1.18 <= 7.0.18 <= 7.1.12 <= 8.0.5	>= 6.1.19 >= 7.0.19 >= 7.1.13 >= 8.0.6	2017-12-06	2020-05-18
9	CVE-2020-2018 PAN-OS: Panorama authentication bypass vulnerability	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 7.1.26 < 8.1.12 < 9.0.6 8.0.*	>= 7.1.26 >= 8.1.12 >= 9.0.6	2020-05-13	2020-05-14
7.1	CVE-2020-2005 PAN-OS: GlobalProtect Clientless VPN session hijacking	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 7.1.26 < 8.1.13 < 9.0.7 8.0.*	>= 7.1.26 >= 8.1.13 >= 9.0.7	2020-05-13	2020-05-13
8.8	CVE-2020-2014 PAN-OS: OS injection vulnerability in PAN-OS management server	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 8.1.14 < 9.0.7 8.0.* 7.1.*	>= 8.1.14 >= 9.0.7 >= 9.1.0	2020-05-13	2020-05-13
8.1	CVE-2020-2001 PAN-OS: Panorama External control of file vulnerability leads to privilege escalation	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 8.1.12 < 9.0.6 8.0.* 7.1.*	>= 8.1.12 >= 9.0.6	2020-05-13	2020-05-13
7.2	CVE-2020-2008 PAN-OS: OS command injection or arbitrary file deletion vulnerability	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1	< 8.1.14 8.0.* 7.1.*	>= 9.0.0 >= 8.1.14	2020-05-13	2020-05-13
8.3	CVE-2020-2013 PAN-OS: Panorama context switch session cookie disclosure	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0 PAN-OS 9.1	< 9.0.6 < 7.1.26 < 8.1.13 < 9.1.1 8.0.*	>= 9.0.6 >= 7.1.26 >= 8.1.13 >= 9.1.1	2020-05-13	2020-05-13
7.8	PAN-SA-2020-0005 PAN-OS: OpenSSH software upgraded to resolve multiple vulnerabilities	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 7.1.26 < 8.1.13 < 9.0.1 8.0.*	>= 7.1.26 >= 8.1.13 >= 9.0.1	2020-05-13	2020-05-13
8.1	CVE-2020-2002 PAN-OS: Spoofed Kerberos key distribution center authentication bypass	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 8.1.13 < 9.0.6 < 7.1.26 8.0.*	>= 8.1.13 >= 9.0.6 >= 7.1.26	2020-05-13	2020-05-13
7.2	CVE-2020-2009 PAN-OS: Panorama SD WAN arbitrary file creation	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 8.1.14 < 9.0.7 7.1.* 8.0.*	>= 8.1.14 >= 9.0.7	2020-05-13	2020-05-13
7.2	CVE-2020-2007 PAN-OS: OS command injection in management server	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1 PAN-OS 9.0	< 9.0.7 < 8.1.14 7.1.* 8.0.*	>= 9.0.7 >= 8.1.14	2020-05-13	2020-05-13
7.2	CVE-2020-2006 PAN-OS: Buffer overflow in management server payload parser	PAN-OS 7.1 PAN-OS 8.0 PAN-OS 8.1	< 8.1.14 7.1.* 8.0.*	>= 8.1.14	2020-05-13	2020-05-13

1 - 25 of 114 Download

N = Exploitable over the network with low complexity, unauthenticated attack.