Get support
Security advisories
Report vulnerabilities
Subscribe
RSS feed
Palo Alto Networks Security Advisories
Clear
Options
version
severity
CRITICAL
HIGH
MEDIUM
LOW
NONE
product
AutoFocus
6
Bridgecrew
7
Bridgecrew Checkov
2
Cloud NGFW
16
Cortex Data Lake
7
Cortex XDR
5
Cortex XDR Agent
28
Cortex XSOAR
20
Cortex XSOAR PowerShell Image
1
Cortex Xpanse
7
Demisto
1
Enterprise Data Loss Prevention
7
Exact Data Matching CLI
7
Expanse
6
Expedition
7
Expedition Migration Tool
6
GlobalProtect App
34
IoT Security
7
MineMeld
1
NetConnect
1
Okyo Garde
7
PAN-DB Private Cloud
1
PAN-OS
235
PAN-OS for Firewall and Wildfire
1
Palo Alto Networks App for Splunk
6
Prisma Access
32
Prisma Cloud
8
Prisma Cloud Compute
11
Prisma SD-WAN
1
Prisma SD-WAN (CloudGenix)
9
Prisma SD-WAN ION
8
SaaS Security
7
Secdo
3
Terminal Server Agent
4
Traps
3
Traps ESM Console
2
Traps ESM Core
1
Twistlock Console
1
Update server
1
User-ID Agent
9
VM-Series Plugin
1
WildFire Appliance
4
WildFire Appliance (WF-500)
6
WildFire Cloud
9
Zingbox Inspector
11
Clear
1 - 25 of 34
Newest
Updated
Severe
Earliest published
Earliest updated
Least Severe
Sort ID ↑
Sort ID ↓
CVSS
Summary
Versions
Affected
Unaffected
Published
Updated
6.1
CVE-2017-15941 Cross Site Scripting Vulnerability in PAN-OS GlobalProtect
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.6-h3
<= 7.1.13
<= 7.0.18
<= 6.1.18
>= 8.0.7
>= 7.1.14
>= 7.0.19
>= 6.1.19
2018-01-02
9.8
N
CVE-2017-15940 Command Injection in PAN-OS
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.6
<= 7.1.13
<= 7.0.18
<= 6.1.18
>= 8.0.6
>= 7.1.14
>= 7.0.19
>= 6.1.19
2017-12-06
9.8
N
CVE-2017-15944 Vulnerability in PAN-OS and Panorama on Management Interface
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
none
<= 7.1.13
<= 7.0.18
<= 6.1.18
>= 8.0.6, >= 8.0
>= 7.1.14
>= 7.0.19
>= 6.1.19
2017-12-06
5.3
N
CVE-2017-15943 Server-Side Request Forgery in PAN-OS
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 7.1.13
<= 7.0.18
<= 6.1.18
>= 7.1.14
>= 7.0.19
>= 6.1.19
2017-12-06
7.5
N
CVE-2017-15942 Denial of Service Against GlobalProtect
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.5
<= 7.1.12
<= 7.0.18
<= 6.1.18
>= 8.0.6
>= 7.1.13
>= 7.0.19
>= 6.1.19
2017-12-06
2020-05-18
9.8
N
CVE-2017-9458 XML External Entity (XXE) in PAN-OS
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.2
<= 7.1.11
<= 7.0.16
<= 6.1.17
>= 8.0.3
>= 7.1.12
>= 7.0.17
>= 6.1.18
2017-08-30
6.1
CVE-2017-12416 Cross-Site Scripting in PAN-OS
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.2
<= 7.1.11
<= 7.0.16
<= 6.1.17
>= 8.0.3
>= 7.1.12
>= 7.0.17
>= 6.1.18
2017-08-30
8.8
CVE-2017-6460 NTP Vulnerability
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.3
<= 7.1.11
<= 7.0.17
6.1.*
>= 8.0.4
>= 7.1.12
>= 7.0.18
none
2017-07-27
9.8
N
CVE-2017-8390 Vulnerability in the PAN-OS DNS Proxy
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.2
<= 7.1.9
<= 7.0.15
<= 6.1.17
>= 8.0.3
>= 7.1.10
>= 7.0.16
>= 6.1.18
2017-07-20
6.1
CVE-2017-9467 Cross-Site Scripting in PAN-OS
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.2
<= 7.1.10
<= 7.0.15
<= 6.1.17
>= 8.0.3
>= 7.1.11
>= 7.0.16
>= 6.1.18
2017-07-20
6.1
CVE-2017-9459 Cross-Site Scripting in the Management Web Interface
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.2
<= 7.1.10
<= 7.0.15
<= 6.1.17
>= 8.0.3
>= 7.1.11
>= 7.0.16
>= 6.1.18
2017-07-20
9.8
N
CVE-2016-10229 Kernel Vulnerability
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.2
<= 7.1.10
7.0.*
<= 6.1.17
>= 8.0.3
>= 7.1.11
none
>= 6.1.18
2017-06-19
7.5
N
CVE-2016-8610 OpenSSL Vulnerability
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 7.1.10
<= 7.0.15
<= 6.1.17
>= 7.1.11
>= 7.0.16
>= 6.1.18
2017-06-07
8.8
CVE-2016-4971 WGET Vulnerability
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
none
<= 7.1.9
<= 7.0.14
<= 6.1.16
>= 8.0.1
>= 7.1.10
>= 7.0.15
>= 6.1.17
2017-05-23
4.8
CVE-2016-5696 Kernel Vulnerability
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 7.1.9
<= 7.0.15
6.1.*
>= 7.1.10
>= 7.0.16
none
2017-05-23
9.8
N
CVE-2017-7945 Brute force attack on the PAN-OS GlobalProtect external interface
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 8.0.1
<= 7.1.8
<= 7.0.14
<= 6.1.16
>= 8.0.2
>= 7.1.9
>= 7.0.15
>= 6.1.17
2017-04-28
6.5
CVE-2017-7644 Information Disclosure in the Management Web Interface
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 7.1.8
<= 7.0.14
<= 6.1.16
>= 7.1.9
>= 7.0.15
>= 6.1.17
2017-04-28
6.1
CVE-2017-7409 Cross-Site Scripting in PAN-OS
PAN-OS 7.0
<= 7.0.14
>= 7.0.15
2017-04-20
7.5
N
CVE-2017-3731 OpenSSL Vulnerability
PAN-OS 8.0
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
none
none
<= 7.0.14
<= 6.1
>= 8.0.2
>= 7.1.10
>= 7.0.15
none
2017-04-20
4.3
CVE-2017-7217 Tampering of temporary export files in the Management Web Interface
PAN-OS 7.1
PAN-OS 7.0
<= 7.1.8
<= 7.0.13
>= 7.1.9
>= 7.0.14
2017-04-10
6.5
CVE-2017-5583 Information Disclosure in the Management Web Interface
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
<= 7.1.7
<= 7.0.12
<= 6.1.15
>= 7.1.8
>= 7.0.13
>= 6.1.16
2017-02-21
5.4
CVE-2017-5584 Cross-Site Scripting in the Management Web Interface
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
PAN-OS 6.0
PAN-OS 5.1
<= 7.1.7
<= 7.0.12
<= 6.1.15
6.0.*
5.1.*
>= 7.1.8
>= 7.0.13
>= 6.1.16
none
none
2017-02-21
7.8
CVE-2016-5195 Kernel Vulnerability
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
PAN-OS 6.0
PAN-OS 5.1
<= 7.1.7
<= 7.0.13
6.1.*
6.0.*
5.1.*
>= 7.1.8
>= 7.0.14
none
none
none
2017-02-21
6.5
CVE-2016-9149 XPath Injection
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
PAN-OS 6.0
PAN-OS 5.1
PAN-OS 5.0
<= 7.1.5
<= 7.0.10
<= 6.1.14
<= 6.0.14
<= 5.1.12
<= 5.0.19
>= 7.1.6
>= 7.0.11
>= 6.1.15
>= 6.0.15
>= 5.1.13
>= 5.0.20
2016-11-17
5.9
CVE-2016-6210 OpenSSH Vulnerability
PAN-OS 7.1
PAN-OS 7.0
PAN-OS 6.1
PAN-OS 6.0
PAN-OS 5.1
PAN-OS 5.0
<= 7.1.5
<= 7.0.10
<= 6.1.14
<= 6.0.14
5.1.*
5.0.*
>= 7.1.6
>= 7.0.11
>= 6.1.15
>= 6.0.15
none
none
2016-11-17
1 - 25 of 34
25 per page
50 per page
100 per page
Download
N
= Exploitable over the network with low complexity, unauthenticated attack.
© 2023 Palo Alto Networks, Inc. All rights reserved.