Palo Alto Networks Security Advisories

Found 5

CVSS	Summary	Versions	Affected	Unaffected	Published	Updated
5.4	CVE-2024-0008 PAN-OS: Insufficient Session Expiration Vulnerability in the Web Interface	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 Prisma Access	none none < 11.0.2 < 10.2.5 < 10.1.10-h1, < 10.1.11 < 10.0.12-h1, < 10.0.13 < 9.1.17 < 9.0.17-h2 none	All All >= 11.0.2 >= 10.2.5 >= 10.1.10-h1, >= 10.1.11 >= 10.0.12-h1, >= 10.0.13 >= 9.1.17 >= 9.0.17-h2 All	2024-02-14	2024-02-14
5.1	CVE-2024-0010 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Portal	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 ➔ View additional products	none none none < 10.1.11-h1, < 10.1.12 < 9.1.17 < 9.0.17-h4 none	All All All >= 10.1.11-h1, >= 10.1.12 >= 9.1.17 >= 9.0.17-h4 all	2024-02-14	2024-02-14
5.9	CVE-2023-6794 PAN-OS: File Upload Vulnerability in the Web Interface	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 ➔ View additional products	none none none < 9.1.14 < 9.0.17-h1 < 8.1.26 none	All All All >= 9.1.14 >= 9.0.17-h1 >= 8.1.26 all	2023-12-13	2023-12-13
5.1	CVE-2023-6793 PAN-OS: XML API Keys Revoked by Read-Only PAN-OS Administrator	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access	none none < 11.0.2 < 10.2.5 < 10.1.11 All < 9.1.17 < 9.0.17-h4 none none	All All >= 11.0.2 >= 10.2.5 >= 10.1.11 None >= 9.1.17 >= 9.0.17-h4 All All	2023-12-13	2023-12-13
4.8	CVE-2023-6789 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access	none none < 11.0.2 < 10.2.5 < 10.1.11 All < 9.1.17 < 9.0.17-h4 < 8.1.26 none	All All >= 11.0.2 >= 10.2.5 >= 10.1.11 None >= 9.1.17 >= 9.0.17-h4 >= 8.1.26 All	2023-12-13	2023-12-13

Download