Lucene search
+L

2185 matches found

CNNVD
CNNVD
added 2026/05/13 12:0 a.m.13 views

Palo Alto Networks PAN-OS 数据伪造问题漏洞

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall devices. There is a vulnerability in Palo Alto Networks PAN-OS related to data manipulation, which stems from an authentication bypass mechanism. This vulnerability could allow unauthenticated...

9.2CVSS5.8AI score0.00379EPSS
Exploits3References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.14 views

PT-2026-40753

Name of the Vulnerable Software and Affected Versions PAN-OS affected versions not specified Description A stored cross-site scripting XSS issue in the web interface allows an authenticated administrator to store a JavaScript payload. This affects PA-Series and VM-Series firewalls, as well as...

6.9CVSS5.7AI score0.00179EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.21 views

PT-2026-40758

Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service DoS condition by sending specially crafted network traffic. Panorama and Cloud NGFW are not impacted by these vulnerabilities...

8.7CVSS5.8AI score0.00359EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/13 12:0 a.m.16 views

Palo Alto Networks PAN-OS 10.2.x / 11.1.x / 11.2.x / 12.1.x Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is a vulnerable version of 10.2.x, 11.1.x, 11.2.x, or 12.1.x. It is, therefore, affected by a vulnerability. Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS software allow an unauthenticated attacker with...

8.7CVSS5.9AI score0.00359EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/13 12:0 a.m.41 views

Palo Alto Networks PAN-OS 10.2.x / 11.1.x / 11.2.x / 12.1.x Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is a vulnerable version of 10.2.x, 11.1.x, 11.2.x, or 12.1.x. It is, therefore, affected by a vulnerability. An authentication bypass vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with...

9.2CVSS5.8AI score0.00379EPSS
Exploits3References2
GithubExploit
GithubExploit
added 2026/05/06 9:47 p.m.164 views

Exploit for CVE-2026-0300

PAN-OS CVE-2026-0300 Non-Destructive Exposure Survey Tool...

9.3CVSS6.7AI score0.32074EPSS
Exploits6
Cvelist
Cvelist
added 2026/05/06 6:57 p.m.57 views

CVE-2026-0300 PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal

A buffer overflow vulnerability in the User-ID™ Authentication Portal aka Captive Portal service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. T...

9.3CVSS0.32074EPSS
Exploits6References1
GithubExploit
GithubExploit
added 2026/05/06 2:14 p.m.138 views

Exploit for CVE-2026-0300

CVE-2026-0300-PANOS Security Rese...

6.1AI score0.32074EPSS
Exploits6
Rapid7 Blog
Rapid7 Blog
added 2026/05/06 1:27 p.m.9 views

Critical Buffer Overflow in Palo Alto Networks PAN-OS User-ID Authentication Portal (CVE-2026-0300)

Overview On May 6, 2026, Palo Alto Networks published a security advisory for CVE-2026-0300, a critical unauthenticated buffer overflow vulnerability affecting PAN-OS PA-Series and VM-Series firewall appliances. Prisma Access, Cloud NGFW, and Panorama appliances are not affected by this...

9.8CVSS6.8AI score0.32074EPSS
Exploits6
GithubExploit
GithubExploit
added 2026/03/30 1:39 p.m.971 views

Exploit for Command Injection in Paloaltonetworks Pan-Os

CVE KB: A high-quality knowledge base for automatic penetratio...

10CVSS7AI score0.99999EPSS
Exploits131
GithubExploit
GithubExploit
added 2026/03/26 8:29 p.m.174 views

Exploit for Improper Neutralization of Script in Attributes in a Web Page in Paloaltonetworks Pan-Os

CVE-2025-4615 — Technical Analysis & Proof of Concept Vulne...

7.2CVSS6.2AI score0.00737EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/03/23 12:0 a.m.8 views

Siemens APE1808 Improper Certificate Validation (CVE-2026-0228)

An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so. This plugin only works with Tenable.ot. Please visit...

5.3CVSS5.8AI score0.00188EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/23 12:0 a.m.8 views

Siemens APE1808 Improper Neutralization of Input During Web Page Generation (CVE-2025-0133)

A reflected cross-site scripting XSS vulnerability in the GlobalProtect gateway and portal features of Palo Alto Networks PAN-OS software enables execution of malicious JavaScript in the context of an authenticated Captive Portal user's browser when they click on a specially crafted link. The...

6.9CVSS6AI score0.45119EPSS
Exploits8References3
GithubExploit
GithubExploit
added 2026/02/15 5:40 p.m.197 views

Exploit for Missing Authentication for Critical Function in Paloaltonetworks Pan-Os

PAN-OS Stored XSS — Incomplete Sanitization of a Known-Bad Var...

9.8CVSS5.8AI score0.99698EPSS
Exploits16
NVD
NVD
added 2026/02/11 6:16 p.m.16 views

CVE-2026-0228

An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so...

5.3CVSS0.00188EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/11 5:55 p.m.29 views

CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate

An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so...

5.3CVSS0.00188EPSS
Exploits0References1
NVD
NVD
added 2026/02/11 12:16 p.m.7 views

CVE-2025-10174

Cleartext Transmission of Sensitive Information vulnerability in Pan Software & Information Technologies Ltd. PanCafe Pro allows Flooding. This issue affects PanCafe Pro: from 3.3.2 through 23092025...

8.3CVSS0.00124EPSS
Exploits0References2
CVE
CVE
added 2026/02/11 11:52 a.m.19 views

CVE-2025-10174

CVE-2025-10174 concerns PanCafe Pro by Pan Software & Information Technologies Ltd. Affected versions are PanCafe Pro:

8.3CVSS5.4AI score0.00124EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/11 11:52 a.m.4 views

CVE-2025-10174 Improper Access Control in Pan Software's PanCafe Pro

Cleartext Transmission of Sensitive Information vulnerability in Pan Software & Information Technologies Ltd. PanCafe Pro allows Flooding. This issue affects PanCafe Pro: from 3.3.2 through 23092025...

8.3CVSS5.4AI score0.00124EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.7 views

PT-2026-7527

Name of the Vulnerable Software and Affected Versions PanCafe Pro versions prior to 3.3.2 through 23092025 Description A cleartext transmission of sensitive information issue exists in PanCafe Pro, potentially allowing flooding. The application transmits sensitive data in an unencrypted format...

8.3CVSS5.3AI score0.00124EPSS
Exploits0References5
Rows per page
Query Builder