Palo Alto Networks Security Advisories

1 - 25 of 143

CVSS	Summary	Versions	Affected	Unaffected	Published	Updated
8.1	CVE-2021-3057 GlobalProtect App: Buffer Overflow Vulnerability When Connecting to Portal or Gateway	GlobalProtect App 5.3 GlobalProtect App 5.2 GlobalProtect App 5.1 GlobalProtect App 5.0	< 5.3.1 on Linux < 5.2.8 on Windows, Universal Windows Platform, Linux, MacOS < 5.1.9 on Windows, Universal Windows Platform, Linux, MacOS 5.0.* on Windows, Universal Windows Platform, Linux, MacOS	>= 5.3.1 on Linux >= 5.2.8 on Windows, Universal Windows Platform, MacOS >= 5.1.9 on Windows, Universal Windows Platform, Linux, MacOS none	2021-10-13	2021-11-23
8.1	CVE-2021-3062 PAN-OS: Improper Access Control Vulnerability Exposing AWS Instance Metadata Endpoint to GlobalProtect Users	Prisma Access 2.2 Prisma Access 2.1 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none none none < 10.0.8 on VM-Series < 9.1.11 on VM-Series < 9.0.14 on VM-Series < 8.1.20 on VM-Series	all all 10.1.* on VM-Series >= 10.0.8 on VM-Series >= 9.1.11 on VM-Series >= 9.0.14 on VM-Series >= 8.1.20 on VM-Series	2021-11-10	2021-11-17
8.1	CVE-2021-3059 PAN-OS: OS Command Injection Vulnerability When Performing Dynamic Updates	Prisma Access 2.2 Prisma Access 2.1 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none none < 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1	all all >= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1	2021-11-10	2021-11-17
7.5 N	CVE-2021-3063 PAN-OS: Denial-of-Service (DoS) Vulnerability in GlobalProtect Portal and Gateway Interfaces	Prisma Access 2.2 Prisma Access 2.1 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none none < 10.1.3 < 10.0.8-h4 < 9.1.11-h3 < 9.0.14-h4 < 8.1.21	all all >= 10.1.3 >= 10.0.8-h4 >= 9.1.11-h3 >= 9.0.14-h4 >= 8.1.21	2021-11-10	2021-11-14
8.8	CVE-2021-3056 PAN-OS: Memory Corruption Vulnerability in GlobalProtect Clientless VPN During SAML Authentication	Prisma Access 2.2 Prisma Access 2.1 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none Preferred none < 10.0.1 < 9.1.9 < 9.0.14 < 8.1.20	all Innovation 10.1.* >= 10.0.1 >= 9.1.9 >= 9.0.14 >= 8.1.20	2021-11-10	2021-11-10
8.1	CVE-2021-3060 PAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP)	Prisma Access 2.2 Prisma Access 2.1 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none Preferred, Innovation < 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1	all none >= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1	2021-11-10	2021-11-10
8.8	CVE-2021-3058 PAN-OS: OS Command Injection Vulnerability in Web Interface XML API	Prisma Access 2.2 Prisma Access 2.1 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none none < 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1	all all >= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1	2021-11-10	2021-11-10
9.8 N	CVE-2021-3064 PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces	Prisma Access 2.2 Prisma Access 2.1 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none none none none none none < 8.1.17	all all 10.1.* 10.0.* 9.1.* 9.0.* >= 8.1.17	2021-11-10	2021-11-10
8	CVE-2021-3052 PAN-OS: Reflected Cross-Site Scripting (XSS) in Web Interface	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 10.0.2 < 9.1.10 < 9.0.14 < 8.1.20	10.1.* >= 10.0.2 >= 9.1.10 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-13
7.5 N	CVE-2021-3053 PAN-OS: Exceptional Condition Denial-of-Service (DoS)	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 10.0.5 < 9.1.9 < 9.0.14 < 8.1.20	10.1.* >= 10.0.5 >= 9.1.9 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-13
7.2	CVE-2021-3054 PAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	< 10.1.2 < 10.0.7 < 9.1.11 < 9.0.14 < 8.1.20	>= 10.1.2 >= 10.0.7 >= 9.1.11 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-13
8.1	CVE-2021-3051 Cortex XSOAR: Authentication Bypass in SAML Authentication	Cortex XSOAR 6.2.0 Cortex XSOAR 6.1.0 Cortex XSOAR 5.5.0	< 1578666 < 1578663 < 1578677	>= 1578666 >= 1578663 >= 1578677	2021-09-08	2021-09-13
8.1	CVE-2020-10188 PAN-OS: Impact of Telnet Remote-Code-Execution (RCE) Vulnerability (CVE-2020-10188)	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 10.0.6 < 9.1.9 < 9.0.14 < 8.1.20	10.1.* >= 10.0.6 >= 9.1.9 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-08
8.8	CVE-2021-3050 PAN-OS: OS Command Injection Vulnerability in Web Interface	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	>= 10.1.0 >= 10.0.0 >= 9.1.4 >= 9.0.10 none	>= 10.1.2 >= 10.0.8 >= 9.1.11 >= 9.0.15 8.1.*	2021-08-11	2021-08-11
7.8	CVE-2021-3042 Cortex XDR Agent: Improper Control of User-Controlled File Leads to Local Privilege Escalation	Cortex XDR Agent 7.3 Cortex XDR Agent 7.2 Cortex XDR Agent 6.1 Cortex XDR Agent 5.0	7.3.* without content update 181 or later on Windows 7.2.* without content update 181 or later on Windows 6.1.* without content update 181 or later on Windows none	7.3.* with content update 181 or later on Windows 7.2.* with content update 181 or later on Windows 6.1.* with content update 181 or later on Windows all	2021-07-14	2021-07-15
7.5	CVE-2021-3043 Prisma Cloud: Cross-Site Scripting (XSS) Vulnerability in Prisma Cloud Compute Web Console	Prisma Cloud Compute 21.04 Prisma Cloud Compute 20.12	< 21.04.439 < 20.12.552	>= 21.04.439 >= 20.12.552	2021-07-14	2021-07-14
9.8 N	CVE-2021-3044 Cortex XSOAR: Unauthorized Usage of the REST API	Cortex XSOAR 6.2.0 Cortex XSOAR 6.1.0 Cortex XSOAR 6.0.2 Cortex XSOAR 6.0.1 Cortex XSOAR 6.0.0 Cortex XSOAR 5.5.0	< 1271065 >= 1016923 and < 1271064 none none none none	>= 1271065 < 1016923, >= 1271064 all all all all	2021-06-22	2021-06-23
7.8	CVE-2021-3041 Cortex XDR Agent: Improper control of user-controlled file leads to local privilege escalation	Cortex XDR Agent 7.2 Cortex XDR Agent 6.1 Cortex XDR Agent 5.0	< 7.2.3 or without content update 171 or later < 6.1.8 < 5.0.11	>= 7.2.3 with content update 171 or later >= 6.1.8 >= 5.0.11	2021-06-09	2021-06-09
9.1 N	CVE-2021-3033 Prisma Cloud Compute: SAML Authentication Bypass Vulnerability in Console	Prisma Cloud Compute 20.12 Prisma Cloud Compute 20.09 Prisma Cloud Compute 20.04 Prisma Cloud Compute 19.11	<= 20.12.535 <= 20.09.365 <= 20.04.177 <= 19.11.*	>= 20.12.541 >= 20.09.374 >= 20.04.183 none	2021-02-10	2021-02-26
7.2	CVE-2020-2000 PAN-OS: OS command injection and memory corruption vulnerability	PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	< 10.0.1 < 9.1.4 < 9.0.10 < 8.1.16	>= 10.0.1 >= 9.1.4 >= 9.0.10 >= 8.1.16	2020-11-11	2021-02-24
7.2	CVE-2020-2038 PAN-OS: OS command injection vulnerability in the management web interface	PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	< 10.0.1 < 9.1.4 < 9.0.10 none	>= 10.0.1 >= 9.1.4 >= 9.0.10 8.1.*	2020-09-09	2021-02-12
7.2	CVE-2020-2037 PAN-OS: OS command injection vulnerability in the management web interface	PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 9.1.3 < 9.0.10 < 8.1.16	>= 10.0.0 >= 9.1.3 >= 9.0.10 >= 8.1.16	2020-09-09	2021-02-12
8.8	CVE-2020-2036 PAN-OS: Reflected Cross-Site Scripting (XSS) vulnerability in management web interface	PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none none < 9.0.9 < 8.1.16	>= 10.0.0 >= 9.1.0 >= 9.0.9 >= 8.1.16	2020-09-09	2021-02-12
7.8	CVE-2020-2049 Cortex XDR Agent: Improper control of loaded DLL leads to local privilege escalation	Cortex XDR Agent 7.2 Cortex XDR Agent 7.1 Cortex XDR Agent 7.0 Cortex XDR Agent 6.1	7.2.* without content update 150 on Windows 7.1.* without content update 150 on Windows none none	7.2.* with content update 150 on Windows 7.1.* with content update 150 on Windows 7.0.* with latest content on Windows 6.1.* with latest content on Windows	2020-12-09	2020-12-09
8.2 N	CVE-2020-2050 PAN-OS: Authentication bypass vulnerability in GlobalProtect client certificate verification	PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	< 10.0.1 < 9.1.5 < 9.0.11 < 8.1.17	>= 10.0.1 >= 9.1.5 >= 9.0.11 >= 8.1.17	2020-11-11	2020-11-19

1 - 25 of 143 Download

N = Exploitable over the network with low complexity, unauthenticated attack.