Lucene search
+L

1962 matches found

Vulnrichment
Vulnrichment
added 2026/05/13 6:18 p.m.6 views

CVE-2026-0256 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface

A stored cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama virtual an...

6.9CVSS5.7AI score0.00179EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 6:18 p.m.30 views

CVE-2026-0256

CVE-2026-0256 describes a stored cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software that allows a malicious authenticated administrator to store a JavaScript payload via the web interface. Affected products include PAN-OS on PA-Series and VM-Series firewalls and Panora...

6.9CVSS5.7AI score0.00179EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/05/13 6:16 p.m.12 views

CVE-2026-0263

A buffer overflow vulnerability in the IKEv2 processing of Palo Alto Networks PAN-OS® software allows an unauthenticated network-based attacker to execute arbitrary code with elevated privileges on the firewall, or cause a denial of service DoS condition. Panorama, Cloud NGFW, and Prisma® Access...

9.8CVSS0.00373EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 6:15 p.m.106 views

CVE-2026-0257 PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues...

7.8CVSS0.86678EPSS
Exploits11References1
Cvelist
Cvelist
added 2026/05/13 6:8 p.m.38 views

CVE-2026-0258 PAN-OS: Server-Side Request Forgery (SSRF) in IKEv2 Certificate URL Fetching

A server-side request forgery SSRF vulnerability in the IKEv2 implementation of Palo Alto Networks PAN-OS® software allows an unauthenticated attacker to cause the firewall to send network requests to unintended destinations or cause a denial of service DoS condition. Panorama, Cloud NGFW and...

8.3CVSS0.00328EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 6:8 p.m.8 views

CVE-2026-0258

A server-side request forgery SSRF vulnerability in the IKEv2 implementation of Palo Alto Networks PAN-OS® software allows an unauthenticated attacker to cause the firewall to send network requests to unintended destinations or cause a denial of service DoS condition. Panorama, Cloud NGFW and...

5.8AI score0.00328EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/13 5:59 p.m.38 views

CVE-2026-0261 PAN-OS: Authenticated Admin Command Injection Vulnerability

Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security ri...

8.6CVSS0.01403EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/13 5:59 p.m.8 views

CVE-2026-0261 PAN-OS: Authenticated Admin Command Injection Vulnerability

Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security ri...

8.6CVSS5.9AI score0.01403EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 5:49 p.m.11 views

CVE-2026-0262

Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service DoS condition by sending specially crafted network traffic. Panorama and Cloud NGFW are not impacted by these vulnerabilities...

5.8AI score0.00359EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2026/05/13 5:49 p.m.8 views

CVE-2026-0262 PAN-OS: Denial of Service Vulnerabilities in Network Traffic Parsing

Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service DoS condition by sending specially crafted network traffic. Panorama and Cloud NGFW are not impacted by these vulnerabilities...

8.7CVSS5.8AI score0.00359EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/13 5:47 p.m.8 views

CVE-2026-0263 PAN-OS: Remote Code Execution (RCE) in IKEv2 Processing

A buffer overflow vulnerability in the IKEv2 processing of Palo Alto Networks PAN-OS® software allows an unauthenticated network-based attacker to execute arbitrary code with elevated privileges on the firewall, or cause a denial of service DoS condition. Panorama, Cloud NGFW, and Prisma® Access...

9.2CVSS6.4AI score0.00373EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 5:38 p.m.8 views

CVE-2026-0265

An authentication bypass vulnerability in Palo Alto Networks PAN-OS® software enables an unauthenticated attacker with network access to bypass authentication controls when Cloud Authentication Service CAS is enabled. The risk is higher if CAS is enabled on the management interface and lower when...

9.2CVSS5.8AI score0.00379EPSS
Exploits3References2Affected Software1
CVE
CVE
added 2026/05/13 5:38 p.m.36 views

CVE-2026-0265

PAN-OS contains an authentication bypass vulnerability (CVE-2026-0265) when Cloud Authentication Service (CAS) is enabled. An unauthenticated attacker with network access can bypass authentication controls on affected PAN-OS platforms, including PA-Series/VM-Series firewalls and Panorama (virtual...

9.2CVSS5.8AI score0.00379EPSS
Exploits3References2Affected Software1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.13 views

Palo Alto Networks PAN-OS 数据伪造问题漏洞

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall devices. There is a vulnerability in Palo Alto Networks PAN-OS related to data manipulation, which stems from an authentication bypass mechanism. This vulnerability could allow unauthenticated...

9.2CVSS5.8AI score0.00379EPSS
Exploits3References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.14 views

PT-2026-40753

Name of the Vulnerable Software and Affected Versions PAN-OS affected versions not specified Description A stored cross-site scripting XSS issue in the web interface allows an authenticated administrator to store a JavaScript payload. This affects PA-Series and VM-Series firewalls, as well as...

6.9CVSS5.7AI score0.00179EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.21 views

PT-2026-40758

Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service DoS condition by sending specially crafted network traffic. Panorama and Cloud NGFW are not impacted by these vulnerabilities...

8.7CVSS5.8AI score0.00359EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/13 12:0 a.m.40 views

Palo Alto Networks PAN-OS 10.2.x / 11.1.x / 11.2.x / 12.1.x Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is a vulnerable version of 10.2.x, 11.1.x, 11.2.x, or 12.1.x. It is, therefore, affected by a vulnerability. An authentication bypass vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with...

9.2CVSS5.8AI score0.00379EPSS
Exploits3References2
GithubExploit
GithubExploit
added 2026/05/06 9:47 p.m.164 views

Exploit for CVE-2026-0300

PAN-OS CVE-2026-0300 Non-Destructive Exposure Survey Tool...

9.3CVSS6.7AI score0.32074EPSS
Exploits6
GithubExploit
GithubExploit
added 2026/05/06 2:14 p.m.138 views

Exploit for CVE-2026-0300

CVE-2026-0300-PANOS Security Rese...

6.1AI score0.32074EPSS
Exploits6
Rapid7 Blog
Rapid7 Blog
added 2026/05/06 1:27 p.m.9 views

Critical Buffer Overflow in Palo Alto Networks PAN-OS User-ID Authentication Portal (CVE-2026-0300)

Overview On May 6, 2026, Palo Alto Networks published a security advisory for CVE-2026-0300, a critical unauthenticated buffer overflow vulnerability affecting PAN-OS PA-Series and VM-Series firewall appliances. Prisma Access, Cloud NGFW, and Panorama appliances are not affected by this...

9.8CVSS6.8AI score0.32074EPSS
Exploits6
Rows per page
Query Builder