CVE-2026-0227

A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service DoS to the firewall. Repeated attempts to trigger this issue results in the firewall entering into maintenance mode...

CVE-2026-0227

A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service DoS to the firewall. Repeated attempts to trigger this issue results in the firewall entering into maintenance mode...

CVE-2025-4619

CVE-2025-4619 describes a DoS in Palo Alto Networks PAN-OS where an unauthenticated attacker can reboot a firewall by sending a specially crafted dataplane packet, with repeated attempts causing maintenance mode. Affected products include PAN-OS running on PA-Series firewalls, VM-Series firewalls...

CVE-2025-4619 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Packets

A denial-of-service DoS vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to reboot a firewall by sending a specially crafted packet through the dataplane. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. This issue is...

CVE-2025-0130

A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this...

CVE-2025-0128 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet

A denial-of-service DoS vulnerability in the Simple Certificate Enrollment Protocol SCEP authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes t...

Palo Alto Networks PAN-OS 10.1.x < 10.1.15 / 10.2.x < 10.2.14 / 11.1.x < 11.1.5 / 11.2.x < 11.2.3 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 10.1.x prior to 10.1.15 or 10.2.x prior to 10.2.14 or 11.1.x prior to 11.1.5 or 11.2.x prior to 11.2.3. It is, therefore, affected by a vulnerability. A Denial of Service vulnerability in the DNS Security feature of Palo Alto...

CVE-2024-2551

A null pointer dereference vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to stop a core system service on the firewall by sending a crafted packet through the data plane that causes a denial of service DoS condition. Repeated attempts to trigger this...

PT-2024-8349 · Palo Alto Networks · Pan-Os

Name of the Vulnerable Software and Affected Versions: Palo Alto Networks PAN-OS software affected versions not specified Description: A null pointer dereference issue in the GlobalProtect gateway of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to stop the GlobalProtect...

CVE-2024-3384

CVE-2024-3384 affects Palo Alto Networks PAN-OS. According to the sources, a remote attacker can reboot PAN-OS firewalls by sending NTLM packets, potentially driving the device into maintenance mode and requiring manual recovery. The Palo Alto advisory notes no workarounds, and the CNVD/NCSC entr...

Palo Alto Networks PAN-OS 8.1.x < 8.1.24 / 9.0.x < 9.0.17 / 9.1.x < 9.1.15-h1 / 10.0.x < 10.0.12 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 8.1.x prior to 8.1.24 or 9.0.x prior to 9.0.17 or 9.1.x prior to 9.1.15-h1 or 10.0.x prior to 10.0.12. It is, therefore, affected by a vulnerability. - A vulnerability in Palo Alto Networks PAN-OS software enables a remote...

[SECURITY] Fedora 29 Update: netmask-2.4.4-1.fc29

This is a handy tool for generating terse netmasks in several common formats. If you've ever maintained a firewall with more than a few rules in it, you might use netmask to clean up and generalize sloppy rules left by the network administrator before you. It will also convert netmasks from one...