Lucene search
+L

4 matches found

OSV
OSV
added 2020/09/09 5:15 p.m.7 views

CVE-2020-2036

A reflected cross-site scripting XSS vulnerability exists in the PAN-OS management web interface. A remote attacker able to convince an administrator with an active authenticated session on the firewall management interface to click on a crafted link to that management web interface could...

8.8CVSS7.5AI score0.2389EPSS
Exploits0References1
OSV
OSV
added 2020/04/08 7:15 p.m.7 views

CVE-2020-1978

TechSupport files generated on Palo Alto Networks VM Series firewalls for Microsoft Azure platform configured with high availability HA inadvertently collect Azure dashboard service account credentials. These credentials are equivalent to the credentials associated with the Contributor role in...

4.4CVSS6.1AI score0.00307EPSS
Exploits0References1
OSV
OSV
added 2020/02/12 11:15 p.m.8 views

CVE-2020-1975

Missing XML validation vulnerability in the PAN-OS web interface on Palo Alto Networks PAN-OS software allows authenticated users to inject arbitrary XML that results in privilege escalation. This issue affects PAN-OS 8.1 versions earlier than PAN-OS 8.1.12 and PAN-OS 9.0 versions earlier than...

8.8CVSS7.4AI score0.00998EPSS
Exploits0References1
OSV
OSV
added 2019/12/20 4:15 p.m.9 views

CVE-2019-17440

Improper restriction of communications to Log Forwarding Card LFC on PA-7000 Series devices with second-generation Switch Management Card SMC may allow an attacker with network access to the LFC to gain root access to PAN-OS. This issue affects PAN-OS 9.0 versions prior to 9.0.5-h3 on PA-7080 and...

9.8CVSS5.8AI score0.01679EPSS
Exploits0References1
Rows per page
Query Builder