CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

56 matches found

EUVD-2026-36149

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security risk posed...

8.6CVSS5.7AI score

Exploits0References2

EUVD•added 22 hours ago•5 views

EUVD-2026-36148

A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administrator with access to the Command Line Interface CLI to perform actions on the device with root privileges. The security risk posed by this issue is significantly minimized when CLI access i...

8.5CVSS5.5AI score

Exploits0References2

EUVD•added 22 hours ago•5 views

EUVD-2026-36134

A cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama virtual and...

4.8CVSS5.2AI score

Exploits0References2

NVD•added yesterday•6 views

CVE-2026-0273

8.6CVSS

Exploits0References1

NVD•added yesterday•4 views

CVE-2026-0272

8.5CVSS

Exploits0References1

NVD•added yesterday•5 views

CVE-2026-0266

4.8CVSS

Exploits0References1

Vulnrichment•added yesterday•4 views

CVE-2026-0273 PAN-OS: Authenticated Admin Command Injection Vulnerability via CLI or Web UI

8.6CVSS5.7AI score

Exploits0References1

CVE•added yesterday•9 views

CVE-2026-0273

CVE-2026-0273 is a command injection vulnerability in Palo Alto Networks PAN-OS software that allows an authenticated administrator to bypass system restrictions and execute arbitrary commands as root. The issue affects PAN-OS on PA-Series and VM-Series firewalls and Panorama , with access requir...

8.6CVSS5.7AI score

Exploits0References1

Cvelist•added yesterday•23 views

CVE-2026-0273 PAN-OS: Authenticated Admin Command Injection Vulnerability via CLI or Web UI

8.6CVSS

Exploits0References1

CVE•added yesterday•6 views

CVE-2026-0272

Technical details for CVE-2026-0272 are not publicly provided in the supplied documents beyond a general description of privilege escalation in PAN-OS CLI. Monitor for updates; no specifics on vulnerable component, affected versions, or fixes are present.

8.5CVSS5.5AI score

Exploits0References1

Vulnrichment•added yesterday•3 views

CVE-2026-0272 PAN-OS: Privilege Escalation (PE) Vulnerability in the Command Line Interface (CLI)

8.5CVSS5.5AI score

Exploits0References1

Cvelist•added yesterday•25 views

CVE-2026-0272 PAN-OS: Privilege Escalation (PE) Vulnerability in the Command Line Interface (CLI)

8.5CVSS

Exploits0References1

Vulnrichment•added yesterday•2 views

CVE-2026-0266 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface

4.8CVSS5.2AI score

Exploits0References1

Cvelist•added yesterday•25 views

CVE-2026-0266 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface

4.8CVSS

Exploits0References1

CVE•added yesterday•8 views

CVE-2026-0266

CVE-2026-0266 concerns a Stored Cross-Site Scripting (XSS) vulnerability in Palo Alto Networks PAN-OS web interface. The connected documents specify that an authenticated administrator can store a JavaScript payload via the PAN-OS web UI, affecting PAN-OS on PA-Series and VM-Series firewalls as w...

4.8CVSS5.2AI score

Exploits0References1

RedhatCVE•added 6 days ago•5 views

CVE-2026-0256

A stored cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama virtual an...

6.9CVSS5.2AI score0.00057EPSS

Exploits0References1

RedhatCVE•added 6 days ago•5 views

CVE-2026-0264

A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS® Software allows an unauthenticated attacker with network access to cause a denial of service DoS condition all PAN-OS platforms except Cloud NGFW and Prisma Access or potentially execute arbitra...

9.2CVSS6.2AI score0.00122EPSS

Exploits0References1

RedhatCVE•added 2026/05/14 7:58 p.m.•6 views

CVE-2026-0265

An authentication bypass vulnerability in Palo Alto Networks PAN-OS® software enables an unauthenticated attacker with network access to bypass authentication controls when Cloud Authentication Service CAS is enabled. The risk is higher if CAS is enabled on the management interface and lower when...

9.2CVSS5.8AI score0.00042EPSS

Exploits3References1

Rapid7 Blog•added 2026/05/14 7:15 p.m.•7 views

CVE-2026-0265: Authentication Bypass in Palo Alto Networks PAN-OS

Overview On May 13, 2026, Palo Alto Networks published a security advisory for CVE-2026-0265, a signature verification vulnerability that facilitates authentication bypass on PAN-OS, the operating system that most Palo Alto Networks firewalls run. This vulnerability allows a remote unauthenticate...

9.2CVSS5.8AI score0.00042EPSS

Exploits3

EUVD•added 2026/05/13 9:32 p.m.•6 views

EUVD-2026-30107

Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security ri...

8.6CVSS5.9AI score0.00113EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by