2185 matches found
Palo Alto Networks PAN-OS 数据伪造问题漏洞
Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall devices. There is a vulnerability in Palo Alto Networks PAN-OS related to data manipulation, which stems from an authentication bypass mechanism. This vulnerability could allow unauthenticated...
PT-2026-40753
Name of the Vulnerable Software and Affected Versions PAN-OS affected versions not specified Description A stored cross-site scripting XSS issue in the web interface allows an authenticated administrator to store a JavaScript payload. This affects PA-Series and VM-Series firewalls, as well as...
PT-2026-40758
Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service DoS condition by sending specially crafted network traffic. Panorama and Cloud NGFW are not impacted by these vulnerabilities...
Palo Alto Networks PAN-OS 10.2.x / 11.1.x / 11.2.x / 12.1.x Vulnerability
The version of Palo Alto Networks PAN-OS running on the remote host is a vulnerable version of 10.2.x, 11.1.x, 11.2.x, or 12.1.x. It is, therefore, affected by a vulnerability. Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS software allow an unauthenticated attacker with...
Palo Alto Networks PAN-OS 10.2.x / 11.1.x / 11.2.x / 12.1.x Vulnerability
The version of Palo Alto Networks PAN-OS running on the remote host is a vulnerable version of 10.2.x, 11.1.x, 11.2.x, or 12.1.x. It is, therefore, affected by a vulnerability. An authentication bypass vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with...
Exploit for CVE-2026-0300
PAN-OS CVE-2026-0300 Non-Destructive Exposure Survey Tool...
CVE-2026-0300 PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal
A buffer overflow vulnerability in the User-ID™ Authentication Portal aka Captive Portal service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. T...
Exploit for CVE-2026-0300
CVE-2026-0300-PANOS Security Rese...
Critical Buffer Overflow in Palo Alto Networks PAN-OS User-ID Authentication Portal (CVE-2026-0300)
Overview On May 6, 2026, Palo Alto Networks published a security advisory for CVE-2026-0300, a critical unauthenticated buffer overflow vulnerability affecting PAN-OS PA-Series and VM-Series firewall appliances. Prisma Access, Cloud NGFW, and Panorama appliances are not affected by this...
Exploit for Command Injection in Paloaltonetworks Pan-Os
CVE KB: A high-quality knowledge base for automatic penetratio...
Exploit for Improper Neutralization of Script in Attributes in a Web Page in Paloaltonetworks Pan-Os
CVE-2025-4615 — Technical Analysis & Proof of Concept Vulne...
Siemens APE1808 Improper Certificate Validation (CVE-2026-0228)
An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so. This plugin only works with Tenable.ot. Please visit...
Siemens APE1808 Improper Neutralization of Input During Web Page Generation (CVE-2025-0133)
A reflected cross-site scripting XSS vulnerability in the GlobalProtect gateway and portal features of Palo Alto Networks PAN-OS software enables execution of malicious JavaScript in the context of an authenticated Captive Portal user's browser when they click on a specially crafted link. The...
Exploit for Missing Authentication for Critical Function in Paloaltonetworks Pan-Os
PAN-OS Stored XSS — Incomplete Sanitization of a Known-Bad Var...
CVE-2026-0228
An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so...
CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate
An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so...
CVE-2025-10174
Cleartext Transmission of Sensitive Information vulnerability in Pan Software & Information Technologies Ltd. PanCafe Pro allows Flooding. This issue affects PanCafe Pro: from 3.3.2 through 23092025...
CVE-2025-10174
CVE-2025-10174 concerns PanCafe Pro by Pan Software & Information Technologies Ltd. Affected versions are PanCafe Pro:
CVE-2025-10174 Improper Access Control in Pan Software's PanCafe Pro
Cleartext Transmission of Sensitive Information vulnerability in Pan Software & Information Technologies Ltd. PanCafe Pro allows Flooding. This issue affects PanCafe Pro: from 3.3.2 through 23092025...
PT-2026-7527
Name of the Vulnerable Software and Affected Versions PanCafe Pro versions prior to 3.3.2 through 23092025 Description A cleartext transmission of sensitive information issue exists in PanCafe Pro, potentially allowing flooding. The application transmits sensitive data in an unencrypted format...