Palo Alto Networks Security Advisories

Palo Alto Networks Security Advisories https://security.paloaltonetworks.com/rss.xmlCVE-2026-0229 PAN-OS: Denial of Service in Advanced DNS Security Feature (Severity: MEDIUM)2026-02-19T23:30:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0229https://security.paloaltonetworks.com/CVE-2026-0229CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate (Severity: LOW)2026-02-11T17:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0228https://security.paloaltonetworks.com/CVE-2026-0228PAN-SA-2026-0002 Chromium: Monthly Vulnerability Update (February 2026) (Severity: HIGH)2026-02-11T17:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2026-0002https://security.paloaltonetworks.com/PAN-SA-2026-0002CVE-2026-0227 PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal (Severity: HIGH)2026-02-09T17:30:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0227https://security.paloaltonetworks.com/CVE-2026-0227PAN-SA-2026-0001 Chromium: Monthly Vulnerability Update (January 2026) (Severity: MEDIUM)2026-01-14T17:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2026-0001https://security.paloaltonetworks.com/PAN-SA-2026-0001CVE-2025-4615 PAN-OS: Improper Neutralization of Input in the Management Web Interface (Severity: MEDIUM)2025-12-19T21:55:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4615https://security.paloaltonetworks.com/CVE-2025-4615CVE-2025-4619 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Packets (Severity: MEDIUM)2025-11-12T17:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4619https://security.paloaltonetworks.com/CVE-2025-4619PAN-SA-2025-0018 Chromium and Prisma Browser: Monthly Vulnerability Update (November 2025) (Severity: MEDIUM)2025-11-12T17:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0018https://security.paloaltonetworks.com/PAN-SA-2025-0018PAN-SA-2025-0017 Informational Bulletin: Impact of OSS CVEs in Prisma SD-WAN ION (Severity: INFORMATIONAL)2025-11-03T17:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0017https://security.paloaltonetworks.com/PAN-SA-2025-0017PAN-SA-2025-0016 Chromium: Monthly Vulnerability Update (October 2025) (Severity: MEDIUM)2025-10-08T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0016https://security.paloaltonetworks.com/PAN-SA-2025-0016CVE-2025-4614 PAN-OS: Session Token Disclosure Vulnerability (Severity: LOW)2025-10-08T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4614https://security.paloaltonetworks.com/CVE-2025-4614CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability (Severity: MEDIUM)2025-09-30T19:43:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-0117https://security.paloaltonetworks.com/CVE-2025-0117PAN-SA-2025-0015 Chromium: Monthly Vulnerability Update (September 2025) (Severity: MEDIUM)2025-09-10T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0015https://security.paloaltonetworks.com/PAN-SA-2025-0015CVE-2025-4234 Cortex XDR Microsoft 365 Defender Pack: Cleartext Exposure of Credentials (Severity: LOW)2025-09-10T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4234https://security.paloaltonetworks.com/CVE-2025-4234CVE-2025-4235 User-ID Credential Agent: Cleartext Exposure of Service Account password (Severity: MEDIUM)2025-09-10T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4235https://security.paloaltonetworks.com/CVE-2025-4235CVE-2025-0139 Autonomous Digital Experience Manager: Privilege Escalation (PE) Vulnerability (Severity: LOW)2025-08-13T19:40:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-0139https://security.paloaltonetworks.com/CVE-2025-0139CVE-2025-2181 Checkov by Prisma Cloud: Cleartext Exposure of Credentials (Severity: LOW)2025-08-13T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-2181https://security.paloaltonetworks.com/CVE-2025-2181CVE-2025-2183 GlobalProtect App: Improper Certificate Validation Leads to Privilege Escalation (Severity: MEDIUM)2025-08-13T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-2183https://security.paloaltonetworks.com/CVE-2025-2183PAN-SA-2025-0014 Chromium: Monthly Vulnerability Update (August 2025) (Severity: MEDIUM)2025-08-13T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0014https://security.paloaltonetworks.com/PAN-SA-2025-0014CVE-2025-2180 Checkov by Prisma Cloud: Unsafe Deserialization of Terraform Files Allows Code Execution (Severity: LOW)2025-08-13T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-2180https://security.paloaltonetworks.com/CVE-2025-2180CVE-2025-2184 Cortex XDR Broker VM: Secrets Shared Across Multiple Broker VM Images (Severity: MEDIUM)2025-08-13T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-2184https://security.paloaltonetworks.com/CVE-2025-2184CVE-2025-2182 PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK) (Severity: LOW)2025-08-13T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-2182https://security.paloaltonetworks.com/CVE-2025-2182CVE-2024-9473 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability (Severity: LOW)2025-08-11T16:30:00.000Zhttps://security.paloaltonetworks.com/CVE-2024-9473https://security.paloaltonetworks.com/CVE-2024-9473CVE-2025-0135 GlobalProtect App on macOS: Non Admin User Can Disable the GlobalProtect App (Severity: LOW)2025-07-31T21:30:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-0135https://security.paloaltonetworks.com/CVE-2025-0135CVE-2025-0140 GlobalProtect App: Non Admin User Can Disable the GlobalProtect App (Severity: MEDIUM)2025-07-28T21:30:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-0140https://security.paloaltonetworks.com/CVE-2025-0140