Palo Alto Networks Security Advisories

1 - 25 of 107
VersionsAffectedUnaffected
7.5 NCVE-2020-2011 PAN-OS: Panorama registration denial of service
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 8.1.14
< 9.0.7
7.1.*
8.0.*
8.0.*
>= 8.1.14
>= 9.0.7
>= 9.1.0
2020-05-132020-05-20
7.5 NCVE-2017-15942 Denial of Service Against GlobalProtect
PAN-OS 6.1
PAN-OS 7.0
PAN-OS 7.1
PAN-OS 8.0
<= 6.1.18
<= 7.0.18
<= 7.1.12
<= 8.0.5
>= 6.1.19
>= 7.0.19
>= 7.1.13
>= 8.0.6
2017-12-062020-05-18
9CVE-2020-2018 PAN-OS: Panorama authentication bypass vulnerability
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 7.1.26
< 8.1.12
< 9.0.6
8.0.*
>= 7.1.26
>= 8.1.12
>= 9.0.6
2020-05-132020-05-14
7.1CVE-2020-2005 PAN-OS: GlobalProtect Clientless VPN session hijacking
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 7.1.26
< 8.1.13
< 9.0.7
8.0.*
>= 7.1.26
>= 8.1.13
>= 9.0.7
2020-05-132020-05-13
8.8CVE-2020-2017 PAN-OS: DOM-Based cross site scripting vulnerability in management web interface
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 7.1.26
< 8.1.13
< 9.0.6
8.0.*
>= 7.1.26
>= 8.1.13
>= 9.0.6
>= 9.1.0
>= 9.2.0
2020-05-132020-05-13
8.8CVE-2020-2014 PAN-OS: OS injection vulnerability in PAN-OS management server
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 8.1.14
< 9.0.7
8.0.*
7.1.*
>= 8.1.14
>= 9.0.7
>= 9.1.0
2020-05-132020-05-13
8.1CVE-2020-2001 PAN-OS: Panorama External control of file vulnerability leads to privilege escalation
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 8.1.12
< 9.0.6
8.0.*
7.1.*
>= 8.1.12
>= 9.0.6
2020-05-132020-05-13
8.8CVE-2020-2015 PAN-OS: Buffer overflow in the management server
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
PAN-OS 9.1
< 9.0.7
< 7.1.26
< 8.1.13
< 9.1.1
8.0.*
8.0.*
>= 9.0.7
>= 7.1.26
>= 8.1.13
>= 9.1.1
>= 9.2.0
2020-05-132020-05-13
7.2CVE-2020-2008 PAN-OS: OS command injection or arbitrary file deletion vulnerability
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
< 8.1.14
8.0.*
7.1.*
>= 9.0.0
>= 8.1.14
2020-05-132020-05-13
7CVE-2020-2016 PAN-OS: Temporary file race condition vulnerability in PAN-OS leads to local privilege escalation
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
< 7.1.26
< 8.1.13
< 9.0.6
8.0.*
>= 7.1.26
>= 8.1.13
>= 9.0.6
>= 9.1.0
>= 9.2.0
2020-05-132020-05-13
8.3CVE-2020-2013 PAN-OS: Panorama context switch session cookie disclosure
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
PAN-OS 9.1
< 9.0.6
< 7.1.26
< 8.1.13
< 9.1.1
8.0.*
>= 9.0.6
>= 7.1.26
>= 8.1.13
>= 9.1.1
2020-05-132020-05-13
7.8PAN-SA-2020-0005 PAN-OS: OpenSSH software upgraded to resolve multiple vulnerabilities
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 7.1.26
< 8.1.13
< 9.0.1
8.0.*
>= 7.1.26
>= 8.1.13
>= 9.0.1
2020-05-132020-05-13
7.5 NCVE-2020-2012 PAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 8.1.13
< 9.0.7
8.0.*
7.1.*
>= 8.1.13
>= 9.0.7
>= 9.1.0
>= 9.2.0
2020-05-132020-05-13
8.1CVE-2020-2002 PAN-OS: Spoofed Kerberos key distribution center authentication bypass
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 8.1.13
< 9.0.6
< 7.1.26
8.0.*
>= 8.1.13
>= 9.0.6
>= 7.1.26
2020-05-132020-05-13
7.2CVE-2020-2010 PAN-OS: Authenticated user command injection vulnerability
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 9.0.7
< 8.1.14
8.0.*
7.1.*
>= 9.0.7
>= 8.1.14
>= 9.1.0
>= 9.2.0
2020-05-132020-05-13
7.2CVE-2020-2009 PAN-OS: Panorama SD WAN arbitrary file creation
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 8.1.14
< 9.0.7
7.1.*
8.0.*
>= 8.1.14
>= 9.0.7
2020-05-132020-05-13
7.2CVE-2020-2007 PAN-OS: OS command injection in management server
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 9.0.7
< 8.1.14
7.1.*
8.0.*
>= 9.0.7
>= 8.1.14
2020-05-132020-05-13
7.2CVE-2020-2006 PAN-OS: Buffer overflow in management server payload parser
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
< 8.1.14
7.1.*
8.0.*
>= 8.1.14
2020-05-132020-05-13
7.5 NPAN-SA-2020-0006 PAN-OS: Nginx software upgraded to resolve multiple vulnerabilities
PAN-OS 7.1
PAN-OS 8.0
PAN-OS 8.1
PAN-OS 9.0
< 8.1.14
< 9.0.7
7.1.*
8.0.*
>= 8.1.14
>= 9.0.7
2020-05-132020-05-13
7.8CVE-2020-1991 Traps: Insecure temporary file vulnerability may allow privilege escalation on Windows
Traps 4.2
Traps 5.0
Traps 6.0
Traps 6.1
Traps 6.1
< 5.0.8 on Windows
< 6.1.4 on Windows
6.0.* on Windows
4.2.* on Windows
>= 5.0.8 on Windows
>= 6.1.4 on Windows
2020-04-082020-05-12
8.1CVE-2020-1979 PAN-OS: A format string vulnerability in PAN-OS log daemon (logd) on Panorama allows local privilege escalation
PAN-OS 8.1
< 8.1.13
>= 8.1.13
>= 9.0.0
>= 7.1.0
>= 9.1.0
2020-03-112020-05-12
7CVE-2020-1989 GlobalProtect Agent: Incorrect privilege assignment allows local privilege escalation
GlobalProtect Agent 5.0
GlobalProtect Agent 5.1
< 5.0.8 on Linux ARM
< 5.1.1 on Linux ARM
>= 5.0.8 on Linux ARM
>= 5.1.1 on Linux ARM
2020-04-082020-04-08
8.1CVE-2020-1992 PAN-OS on PA-7000 Series: Varrcvr daemon network-based denial of service or privilege escalation
PAN-OS 9.0
PAN-OS 9.1
< 9.0.7 on PA-7000 series with LFC
< 9.1.2 on PA-7000 series with LFC
>= 9.0.7 on PA-7000 series with LFC
>= 9.1.2 on PA-7000 series with LFC
8.1.*
8.0.*
7.1.*
2020-04-082020-04-08
7.8CVE-2020-1984 Secdo: Privilege escalation via hardcoded script path
Secdo
all versions on Windows
2020-04-082020-04-08
7.8CVE-2020-1985 Secdo: Incorrect Default Permissions
Secdo
all versions on Windows
2020-04-082020-04-08
1 - 25 of 107
N = Exploitable over the network with low complexity, unauthenticated attack.
© 2020 Palo Alto Networks, Inc. All rights reserved.