Lucene search
K

213 matches found

NVD
NVD
added 2025/01/11 3:15 a.m.17 views

CVE-2025-0103

An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, and device API keys. This vulnerability also enables attackers to create and read arbitrary files on...

9.2CVSS0.00606EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 3:15 a.m.7 views

CVE-2025-0104

A reflected cross-site scripting XSS vulnerability in Palo Alto Networks Expedition enables attackers to execute malicious JavaScript code in the context of an authenticated Expedition user’s browser if that authenticated user clicks a malicious link that allows phishing attacks and could lead to...

6.1CVSS7.4AI score0.0035EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 3:15 a.m.5 views

CVE-2025-0103

An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, and device API keys. This vulnerability also enables attackers to create and read arbitrary files on...

8.8CVSS7.7AI score
Exploits0References1
OSV
OSV
added 2025/01/11 3:15 a.m.5 views

CVE-2025-0106

A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem...

5.3CVSS5.8AI score0.00474EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/11 3:2 a.m.19 views

CVE-2025-0107 Expedition: OS Command Injection Vulnerability

An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclosure of usernames, cleartext passwords, device configurations, and device API keys for firewalls...

7.7CVSS7.5AI score0.77653EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/11 3:2 a.m.19 views

CVE-2025-0107 Expedition: OS Command Injection Vulnerability

An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclosure of usernames, cleartext passwords, device configurations, and device API keys for firewalls...

7.7CVSS0.77653EPSS
Exploits0References1
CVE
CVE
added 2025/01/11 3:2 a.m.1180 views

CVE-2025-0107

CVE-2025-0107 – Palo Alto Networks Expedition OS command injection . The connected templates confirm an OS command injection in Palo Alto Networks Expedition that allows an unauthenticated attacker to execute arbitrary OS commands as the www-data user, leading to disclosure of usernames, cleartex...

9.8CVSS7.5AI score0.77653EPSS
In wildExploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/11 3:2 a.m.17 views

CVE-2025-0106 Expedition: Wildcard Expansion Vulnerability

A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem...

6.9CVSS6.9AI score0.00474EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/11 3:2 a.m.21 views

CVE-2025-0106 Expedition: Wildcard Expansion Vulnerability

A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem...

6.9CVSS0.00474EPSS
Exploits0References1
CVE
CVE
added 2025/01/11 3:2 a.m.54 views

CVE-2025-0106

CVE-2025-0106 is a wildcard expansion vulnerability in Palo Alto Networks Expedition. An unauthenticated attacker can enumerate files on the host filesystem via the Expedition tool’s wildcard expansion handling. Affected product: Palo Alto Networks Expedition. Root cause: wildcard expansion issue...

6.9CVSS6.6AI score0.00474EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/01/11 3:1 a.m.93 views

CVE-2025-0105

CVE-2025-0105 is an arbitrary file deletion vulnerability in Palo Alto Networks Expedition. An unauthenticated attacker could delete arbitrary files accessible to the www-data user on the host filesystem. The impact is described as functional deletion with potential exposure of configured data (p...

9.1CVSS6.8AI score0.12955EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/01/11 3:1 a.m.21 views

CVE-2025-0105 Expedition: Arbitrary File Deletion Vulnerability

An arbitrary file deletion vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to delete arbitrary files accessible to the www-data user on the host filesystem...

6.9CVSS0.12955EPSS
Exploits0References1
CVE
CVE
added 2025/01/11 3:0 a.m.58 views

CVE-2025-0104

CVE-2025-0104 ( Expedition XSS) affects Palo Alto Networks Expedition. The connected PT-security entry describes a reflected cross-site scripting vulnerability where an authenticated user’s browser can execute malicious JavaScript if a user clicks a crafted link, potentially enabling phishing and...

7CVSS5.4AI score0.0035EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/01/11 2:59 a.m.21 views

CVE-2025-0103 Expedition: SQL Injection Vulnerability

An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, and device API keys. This vulnerability also enables attackers to create and read arbitrary files on...

9.2CVSS0.00606EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/11 2:59 a.m.12 views

CVE-2025-0103 Expedition: SQL Injection Vulnerability

An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, and device API keys. This vulnerability also enables attackers to create and read arbitrary files on...

9.2CVSS7.8AI score0.00606EPSS
Exploits0References1
CVE
CVE
added 2025/01/11 2:59 a.m.1032 views

CVE-2025-0103

CVE-2025-0103 describes an SQL injection in Palo Alto Networks Expedition. An authenticated attacker can exfiltrate Expedition data (password hashes, usernames, device configurations, and device API keys) and can create/read arbitrary files on the Expedition system. The CVE is reflected in multip...

9.2CVSS7.5AI score0.00606EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.5 views

Palo Alto Networks Expedition 安全漏洞

Palo Alto Networks Expedition is a tool from Palo Alto Networks, Inc. that helps with configuration migration, tuning, and enrichment. A security vulnerability exists in Palo Alto Networks Expedition. An attacker could exploit the vulnerability to delete arbitrary files on the host's file system...

6.9CVSS8.7AI score0.12955EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.7 views

Palo Alto Networks Expedition 安全漏洞

Palo Alto Networks Expedition is a tool from Palo Alto Networks, Inc. that helps with configuration migration, tuning, and enrichment. A security vulnerability exists in Palo Alto Networks Expedition. An attacker exploiting this vulnerability could execute malicious JavaScript code in this user's...

7CVSS8.7AI score0.0035EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.7 views

Palo Alto Networks Expedition 安全漏洞

Palo Alto Networks Expedition is a network security appliance used to provide firewall, intrusion detection, and prevention. The Palo Alto Networks Expedition suffers from a command injection vulnerability that can be exploited by an attacker to run arbitrary operating system commands, which can...

7.7CVSS7.4AI score0.77653EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.5 views

Palo Alto Networks Expedition 安全漏洞

Palo Alto Networks Expedition is a tool from Palo Alto Networks, Inc. that helps with configuration migration, tuning, and enrichment. A security vulnerability exists in Palo Alto Networks Expedition. An attacker exploiting the vulnerability could enumerate files on the host's file system...

6.9CVSS8.8AI score0.00474EPSS
Exploits0References1
Rows per page
Query Builder