GlobalProtect Portal Login page in Palo Alto Networks PAN-OS before 8.1.4 allows an unauthenticated attacker to inject arbitrary JavaScript or HTML.
[
{
"product": "Palo Alto Networks",
"vendor": "Palo Alto Networks",
"versions": [
{
"status": "affected",
"version": "before PAN-OS 8.1.4"
}
]
}
]