Lucene search
+L

531 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/13 6:46 p.m.7 views

CVE-2026-0247

Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access Agent® allow a local attacker to bypass authentication controls and execute privileged operations...

8.5CVSS5.9AI score0.00152EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/13 6:46 p.m.40 views

CVE-2026-0247 Prisma Access Agent Endpoint DLP: Authorization Bypass Vulnerabilities

Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access Agent® allow a local attacker to bypass authentication controls and execute privileged operations...

8.5CVSS0.00152EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/13 6:46 p.m.11 views

CVE-2026-0247 Prisma Access Agent Endpoint DLP: Authorization Bypass Vulnerabilities

Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access Agent® allow a local attacker to bypass authentication controls and execute privileged operations...

8.5CVSS5.9AI score0.00152EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 6:46 p.m.17 views

CVE-2026-0247

The CVE-2026-0247 entry refers to multiple authorization-bypass vulnerabilities in the Endpoint DLP component of the Prisma Access Agent. The underlying issue allows a local attacker to bypass authentication controls and perform privileged operations. The description specifies affected software a...

8.5CVSS5.9AI score0.00152EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/05/13 6:30 p.m.11 views

EUVD-2026-30062

An improper protection of alternate path vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to an internal automation bridge. This allows a locally authenticated non-admin user to leverage an exposed communication channel to send unauthorized commands t...

7.3CVSS5.8AI score0.0015EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/13 6:18 p.m.61 views

CVE-2026-0256 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface

A stored cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama virtual an...

6.9CVSS0.00179EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 6:16 p.m.12 views

CVE-2026-0237

An improper protection of alternate path vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to an internal automation bridge. This allows a locally authenticated non-admin user to leverage an exposed communication channel to send unauthorized commands t...

7.8CVSS0.0015EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 6:14 p.m.40 views

CVE-2026-0235 Prisma Browser: Access and Data Rule Bypass

A race condition vulnerability in Palo Alto Networks Prisma® Browser enables a locally authenticated non-admin user to bypass certain access and data control policies...

5.8CVSS0.0011EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/13 6:14 p.m.7 views

CVE-2026-0235 Prisma Browser: Access and Data Rule Bypass

A race condition vulnerability in Palo Alto Networks Prisma® Browser enables a locally authenticated non-admin user to bypass certain access and data control policies...

5.8CVSS5.8AI score0.0011EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 6:14 p.m.14 views

CVE-2026-0235

A race condition vulnerability in Palo Alto Networks Prisma® Browser enables a locally authenticated non-admin user to bypass certain access and data control policies...

5.8AI score0.0011EPSS
Exploits0References2
CVE
CVE
added 2026/05/13 6:14 p.m.21 views

CVE-2026-0235

CVE-2026-0235 is a race-condition vulnerability in Palo Alto Networks Prisma Browser. The description states that a locally authenticated non-admin user can bypass certain access and data control policies due to this race condition. No specific vulnerable components, versions, or root-cause detai...

5.8CVSS5.8AI score0.0011EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/13 5:59 p.m.7 views

CVE-2026-0261

Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security ri...

5.9AI score0.01403EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/13 5:55 p.m.36 views

CVE-2026-0236 Prisma Browser: Code Injection Enables Security Controls Bypass

A code injection vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to its AppleScript interface allowing a locally authenticated non-admin user to leverage this exposed Apple Event handler to send unauthorized commands to the browser...

7.3CVSS0.00158EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 5:55 p.m.6 views

CVE-2026-0236

A code injection vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to its AppleScript interface allowing a locally authenticated non-admin user to leverage this exposed Apple Event handler to send unauthorized commands to the browser...

5.9AI score0.00158EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/13 5:55 p.m.7 views

CVE-2026-0236 Prisma Browser: Code Injection Enables Security Controls Bypass

A code injection vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to its AppleScript interface allowing a locally authenticated non-admin user to leverage this exposed Apple Event handler to send unauthorized commands to the browser...

7.3CVSS5.9AI score0.00158EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 5:55 p.m.14 views

CVE-2026-0236

CVE-2026-0236 describes a code injection vulnerability in Palo Alto Networks Prisma® Browser for macOS where access to the AppleScript interface is not properly restricted. This allows a locally authenticated non-admin user to exploit an exposed Apple Event handler to send unauthorized commands t...

7.8CVSS5.9AI score0.00158EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/13 5:48 p.m.55 views

CVE-2026-0237 Prisma Browser: Improperly Restricted Automation Bridge Allows Security Bypass

An improper protection of alternate path vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to an internal automation bridge. This allows a locally authenticated non-admin user to leverage an exposed communication channel to send unauthorized commands t...

7.3CVSS0.0015EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 5:48 p.m.10 views

CVE-2026-0237

An improper protection of alternate path vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to an internal automation bridge. This allows a locally authenticated non-admin user to leverage an exposed communication channel to send unauthorized commands t...

7.3CVSS5.8AI score0.0015EPSS
Exploits0References2
CVE
CVE
added 2026/05/13 5:48 p.m.25 views

CVE-2026-0237

CVE-2026-0237 affects Palo Alto Networks Prisma Browser on macOS. The issue is an improper protection of an alternate path that fails to restrict access to an internal automation bridge, allowing a locally authenticated non-admin user to use an exposed communication channel to send unauthorized c...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/13 5:48 p.m.8 views

CVE-2026-0237 Prisma Browser: Improperly Restricted Automation Bridge Allows Security Bypass

An improper protection of alternate path vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to an internal automation bridge. This allows a locally authenticated non-admin user to leverage an exposed communication channel to send unauthorized commands t...

7.3CVSS5.8AI score0.0015EPSS
Exploits0References1
Rows per page
Query Builder