Palo Alto Networks Security Advisories

1 - 25 of 95

CVSS	Summary	Versions	Affected	Unaffected	Published	Updated
5.4	CVE-2023-0010 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication	Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access	none none < 10.2.2 < 10.1.6 < 10.0.11 < 9.1.16 < 9.0.17 < 8.1.24 none	All All >= 10.2.2 >= 10.1.6 >= 10.0.11 >= 9.1.16 >= 9.0.17 >= 8.1.24 All	2023-06-14	2023-06-29
6.5	CVE-2023-0007 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface	Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 ➔ View additional products	none none none < 10.0.7 on Panorama < 9.1.16 on Panorama < 9.0.17 on Panorama < 8.1.25 on Panorama none	All All All >= 10.0.7 on Panorama >= 9.1.16 on Panorama >= 9.0.17 on Panorama >= 8.1.25 on Panorama all	2023-05-10	2023-05-10
4.4	CVE-2023-0008 PAN-OS: Local File Disclosure Vulnerability in the PAN-OS Web Interface	Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access	none < 11.0.1 < 10.2.4 < 10.1.10 < 10.0.12 < 9.1.16 < 9.0.17 < 8.1.25 none	All >= 11.0.1 >= 10.2.4 >= 10.1.10 >= 10.0.12 >= 9.1.16 >= 9.0.17 >= 8.1.25 All	2023-05-10	2023-05-11
6.5	CVE-2023-0004 PAN-OS: Local File Deletion Vulnerability	Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access	none none none < 10.1.6 < 10.0.11 < 9.1.15 < 9.0.17 < 8.1.24 none	All All All >= 10.1.6 >= 10.0.11 >= 9.1.15 >= 9.0.17 >= 8.1.24 All	2023-04-12	2023-04-19
4.1	CVE-2023-0005 PAN-OS: Exposure of Sensitive Information Vulnerability	Cloud NGFW PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access	none none < 10.2.3 < 10.1.8 < 10.0.12 < 9.1.15 < 9.0.17 < 8.1.24 none	All All >= 10.2.3 >= 10.1.8 >= 10.0.12 >= 9.1.15 >= 9.0.17 >= 8.1.24 All	2023-04-12	2023-04-12
8.6 N	CVE-2022-0028 PAN-OS: Reflected Amplification Denial-of-Service (DoS) Vulnerability in URL Filtering	Cloud NGFW PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.1 Prisma Access 3.0 ➔ View additional products	none < 10.2.2-h2 < 10.1.6-h6 < 10.0.11-h1 < 9.1.14-h4 < 9.0.16-h3 < 8.1.23-h1 none none none	All >= 10.2.2-h2 >= 10.1.6-h6 >= 10.0.11-h1 >= 9.1.14-h4 >= 9.0.16-h3 >= 8.1.23-h1 All All all	2022-08-10	2022-08-19
7.2	CVE-2022-0024 PAN-OS: Improper Neutralization Vulnerability Leads to Unintended Program Execution During Configuration Commit	PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 10.1.5 < 10.0.10 < 9.1.13 < 9.0.16 < 8.1.23	>= 10.2.0 >= 10.1.5 >= 10.0.10 >= 9.1.13 >= 9.0.16 >= 8.1.23	2022-05-11	2022-05-11
5.9	CVE-2022-0023 PAN-OS: Denial-of-Service (DoS) Vulnerability in DNS Proxy	PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.0 Prisma Access 2.2 Prisma Access 2.1	none < 10.1.5 < 10.0.10 < 9.1.13 < 9.0.16 < 8.1.22 none none none	10.2.* >= 10.1.5 >= 10.0.10 >= 9.1.13 >= 9.0.16 >= 8.1.22 Preferred, Innovation Preferred Preferred, Innovation	2022-04-13	2022-04-13
7.5 N	CVE-2022-0778 Impact of the OpenSSL Infinite Loop Vulnerability CVE-2022-0778	Cortex XDR Agent 7.7 Cortex XDR Agent 7.6 Cortex XDR Agent 7.5-CE Cortex XDR Agent 7.5 Cortex XDR Agent 7.4 Cortex XDR Agent 6.1 Cortex XSOAR GlobalProtect App 6.0 GlobalProtect App 5.3 GlobalProtect App 5.2 GlobalProtect App 5.1 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.1 Prisma Access 3.0 Prisma Access 2.2 Prisma Access 2.1 Prisma Cloud	< 7.7.0.60725 on Windows, < 7.7.0.2356 on macOS, < 7.7.0.59559 on Linux < 7.6.2.60545 on Windows, < 7.6.2.2311 on macOS, < 7.6.2.59612 on Linux < 7.5.100.60642 on Windows, < 7.5.100.2276 on macOS, < 7.5.100.59687 on Linux < 7.5.3.60113 on Windows, < 7.5.3.2265 on macOS, < 7.5.3.59465 on Linux 7.4.* < 6.1.9.61370 on Windows, < 6.1.7.1690 on macOS, < 6.1.7.60245 on Linux none < 6.0.1 on Windows and macOS, < 6.0.2 on Android and iOS < 5.3.4 < 5.2.12 < 5.1.11 < 10.2.1 < 10.1.5-h1 < 10.0.10 < 9.1.13-h3 < 9.0.16-h2 < 8.1.23 Preferred, Innovation Preferred, Innovation Preferred Preferred, Innovation none	>= 7.7.0.60725 on Windows, >= 7.7.0.2356 on macOS, >= 7.7.0.59559 on Linux >= 7.6.2.60545 on Windows, >= 7.6.2.2311 on macOS, >= 7.6.2.59612 on Linux >= 7.5.100.60642 on Windows, >= 7.5.100.2276 on macOS, >= 7.5.100.59687 on Linux >= 7.5.3.60113 on Windows, >= 7.5.3.2265 on macOS, >= 7.5.3.59465 on Linux none >= 6.1.9.61370 on Windows, >= 6.1.7.1690 on macOS, >= 6.1.7.60245 on Linux all >= 6.0.1 on Windows and macOS, >= 6.0.2 on Android and iOS >= 5.3.4 >= 5.2.12 >= 5.1.11 >= 10.2.1 >= 10.1.5-h1 >= 10.0.10 >= 9.1.13-h3 >= 9.0.16-h2 >= 8.1.23 none none none none all	2022-03-31	2022-06-24
4.1	CVE-2022-0022 PAN-OS: Use of a Weak Cryptographic Algorithm for Stored Password Hashes	PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.0 ➔ View additional products	none none < 10.0.7 < 9.1.11 < 9.0.17 < 8.1.21 none none	10.2.* 10.1.* >= 10.0.7 >= 9.1.11 >= 9.0.17 >= 8.1.21 Preferred, Innovation all	2022-03-09	2022-03-09
6.5	CVE-2022-0011 PAN-OS: URL Category Exceptions Match More URLs Than Intended in URL Filtering	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 3.0 Prisma Access 2.2 Prisma Access 2.1	< 10.1.3 < 10.0.8 < 9.1.12 9.0.* < 8.1.21 none Preferred Preferred, Innovation	>= 10.1.3 >= 10.0.8 >= 9.1.12 none >= 8.1.21 Preferred, Innovation none none	2022-02-09	2022-03-09
9.8 N	CVE-2021-3064 PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 8.1 ➔ View additional products	none none none < 8.1.17 none	10.1.* 10.0.* 9.1.* >= 8.1.17 all	2021-11-10	2021-11-10
8.8	CVE-2021-3058 PAN-OS: OS Command Injection Vulnerability in Web Interface XML API	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1	< 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1 none none	>= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1 all all	2021-11-10	2021-11-10
8.8	CVE-2021-3056 PAN-OS: Memory Corruption Vulnerability in GlobalProtect Clientless VPN During SAML Authentication	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1	none < 10.0.1 < 9.1.9 < 9.0.14 < 8.1.20 none Preferred	10.1.* >= 10.0.1 >= 9.1.9 >= 9.0.14 >= 8.1.20 all Innovation	2021-11-10	2021-11-10
8.1	CVE-2021-3060 PAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP)	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1	< 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1 none Preferred, Innovation	>= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1 all none	2021-11-10	2022-08-06
8.1	CVE-2021-3062 PAN-OS: Improper Access Control Vulnerability Exposing AWS Instance Metadata Endpoint to GlobalProtect Users	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1	none < 10.0.8 on VM-Series < 9.1.11 on VM-Series < 9.0.14 on VM-Series < 8.1.20 on VM-Series none none	10.1.* on VM-Series >= 10.0.8 on VM-Series >= 9.1.11 on VM-Series >= 9.0.14 on VM-Series >= 8.1.20 on VM-Series all all	2021-11-10	2021-11-17
8.1	CVE-2021-3059 PAN-OS: OS Command Injection Vulnerability When Performing Dynamic Updates	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1	< 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1 none none	>= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1 all all	2021-11-10	2021-11-17
7.5 N	CVE-2021-3063 PAN-OS: Denial-of-Service (DoS) Vulnerability in GlobalProtect Portal and Gateway Interfaces	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1	< 10.1.3 < 10.0.8-h4 < 9.1.11-h3 < 9.0.14-h4 < 8.1.21 none none	>= 10.1.3 >= 10.0.8-h4 >= 9.1.11-h3 >= 9.0.14-h4 >= 8.1.21 all all	2021-11-10	2021-12-09
6.4	CVE-2021-3061 PAN-OS: OS Command Injection Vulnerability in the Command Line Interface (CLI)	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1	< 10.1.3 < 10.0.8 < 9.1.11-h2 < 9.0.14-h3 < 8.1.20-h1 none none	>= 10.1.3 >= 10.0.8 >= 9.1.11-h2 >= 9.0.14-h3 >= 8.1.20-h1 all all	2021-11-10	2021-11-23
3.7	CVE-2020-1968 PAN-OS: Impact of the Raccoon Attack Vulnerability CVE-2020-1968	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access 2.2 Prisma Access 2.1 Prisma Access 2.0	none none 9.1.* 9.0.* 8.1.* none Preferred Preferred	10.1.* 10.0.* none none none Preferred Innovation Innovation	2021-10-13	2021-11-01
8.1	CVE-2020-10188 PAN-OS: Impact of Telnet Remote-Code-Execution (RCE) Vulnerability (CVE-2020-10188)	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 10.0.6 < 9.1.9 < 9.0.14 < 8.1.20	10.1.* >= 10.0.6 >= 9.1.9 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-08
8	CVE-2021-3052 PAN-OS: Reflected Cross-Site Scripting (XSS) in Web Interface	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 10.0.2 < 9.1.10 < 9.0.14 < 8.1.20	10.1.* >= 10.0.2 >= 9.1.10 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-12
7.5 N	CVE-2021-3053 PAN-OS: Exceptional Condition Denial-of-Service (DoS)	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 10.0.5 < 9.1.9 < 9.0.14 < 8.1.20	10.1.* >= 10.0.5 >= 9.1.9 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-13
7.2	CVE-2021-3054 PAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	< 10.1.2 < 10.0.7 < 9.1.11 < 9.0.14 < 8.1.20	>= 10.1.2 >= 10.0.7 >= 9.1.11 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-12
6.5	CVE-2021-3055 PAN-OS: XML External Entity (XXE) Reference Vulnerability in the PAN-OS Web Interface	PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1	none < 10.0.6 < 9.1.10 < 9.0.14 < 8.1.20	10.1.* >= 10.0.6 >= 9.1.10 >= 9.0.14 >= 8.1.20	2021-09-08	2021-09-12

1 - 25 of 95 Download

N = Exploitable over the network with low complexity, unauthenticated attack.