Lucene search
+L

530 matches found

Cvelist
Cvelist
added 2026/07/09 6:56 p.m.37 views

CVE-2026-0286 PAN-OS: Authenticated Command Injection in CLI

A command injection vulnerability in the management plane of Palo Alto Networks PAN-OS® software enables an authenticated administrator to execute arbitrary OS commands as root. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of...

8.5CVSS0.014EPSS
Exploits0References1
CVE
CVE
added 2026/07/09 6:56 p.m.18 views

CVE-2026-0286

Summary: CVE-2026-0286 is a command-injection vulnerability in the PAN-OS management plane. An authenticated administrator can execute arbitrary OS commands as root, via the CLI. The flaw affects PAN-OS on PA-Series and VM-Series firewalls and Panorama (virtual and M-Series); Cloud NGFW and Prism...

8.5CVSS6.2AI score0.014EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/07/09 12:0 a.m.6 views

PT-2026-56917

Name of the Vulnerable Software and Affected Versions Prisma Browser affected versions not specified Description A local privilege escalation issue in Prisma Browser on macOS allows a locally authenticated administrator who has access to the local filesystem to execute actions on the device with...

5.4CVSS6.2AI score0.00112EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.6 views

PT-2026-56529

Multiple protection mechanism failures in the Prisma Access Agent Data Loss Prevention DLP component for Windows allow a local user to bypass DLP policy enforcement controls. The Prisma Access Agent on macOS is not affected...

8.4CVSS5.9AI score0.00151EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/11 12:32 a.m.11 views

EUVD-2026-36144

A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...

6.9CVSS5.5AI score0.00095EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/11 12:32 a.m.10 views

EUVD-2026-36134

A cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama virtual and...

4.8CVSS5.2AI score0.00129EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/11 12:32 a.m.12 views

EUVD-2026-36149

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security risk posed...

8.6CVSS5.7AI score0.01373EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/11 12:32 a.m.14 views

EUVD-2026-36147

A privilege escalation PE vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices enables a local user to execute code with elevated privileges. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...

8.5CVSS5.7AI score0.00109EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/11 12:32 a.m.12 views

EUVD-2026-36145

A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. Panorama,...

6.9CVSS5.5AI score0.00224EPSS
Exploits0References2
NVD
NVD
added 2026/06/10 10:16 p.m.13 views

CVE-2026-0271

A privilege escalation PE vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices enables a local user to execute code with elevated privileges. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...

8.5CVSS0.00109EPSS
Exploits0References1
NVD
NVD
added 2026/06/10 10:16 p.m.17 views

CVE-2026-0272

A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administrator with access to the Command Line Interface CLI to perform actions on the device with root privileges. The security risk posed by this issue is significantly minimized when CLI access i...

8.5CVSS0.00261EPSS
Exploits0References2
NVD
NVD
added 2026/06/10 10:16 p.m.14 views

CVE-2026-0268

A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...

6.9CVSS0.00095EPSS
Exploits0References1
NVD
NVD
added 2026/06/10 10:16 p.m.15 views

CVE-2026-0269

A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. Panorama,...

6.9CVSS0.00224EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/10 9:1 p.m.43 views

CVE-2026-0273 PAN-OS: Authenticated Admin Command Injection Vulnerability via CLI or Web UI

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security risk posed...

8.6CVSS5.7AI score0.01373EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/10 9:1 p.m.13 views

CVE-2026-0272 PAN-OS: Privilege Escalation (PE) Vulnerability in the Command Line Interface (CLI)

A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administrator with access to the Command Line Interface CLI to perform actions on the device with root privileges. The security risk posed by this issue is significantly minimized when CLI access i...

8.5CVSS5.5AI score0.00261EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/10 8:59 p.m.9 views

CVE-2026-0271 Prisma Access Agent: Local Privilege Escalation by Authorized Users

A privilege escalation PE vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices enables a local user to execute code with elevated privileges. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...

8.5CVSS5.7AI score0.00109EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/10 8:59 p.m.34 views

CVE-2026-0271 Prisma Access Agent: Local Privilege Escalation by Authorized Users

A privilege escalation PE vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices enables a local user to execute code with elevated privileges. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...

8.5CVSS0.00109EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 8:59 p.m.30 views

CVE-2026-0271

CVE-2026-0271 describes a privilege escalation vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux. A local user can execute code with elevated privileges, as indicated by the entry. Affected product: Prisma Access Agent (Linux). Impact per metrics: high impact to confidentia...

8.5CVSS5.7AI score0.00109EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/10 8:40 p.m.8 views

CVE-2026-0268 Prisma Access Agent: Local Authenticated VPN Enforcement Bypass on Linux

A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...

6.9CVSS5.5AI score0.00095EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/10 8:40 p.m.36 views

CVE-2026-0268 Prisma Access Agent: Local Authenticated VPN Enforcement Bypass on Linux

A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...

6.9CVSS0.00095EPSS
Exploits0References1
Rows per page
Query Builder