35 matches found
EUVD-2021-26395
Malware in sbrugna...
EUVD-2021-26385
Malware in sbrugna...
EUVD-2021-26391
Malware in sbrugna...
EUVD-2025-14901
Malicious code in bioql PyPI...
EUVD-2024-47038
Malicious code in bioql PyPI...
CVE-2025-0138
Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access. Compute in Prisma Cloud Enterprise Edition is not affected by this issue...
CVE-2025-0138
Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access. Compute in Prisma Cloud Enterprise Edition is not affected by this issue...
CVE-2025-0138
CVE-2025-0138 affects Palo Alto Networks Prisma Cloud Compute Edition. Web sessions in the Compute Edition web interface do not expire when users are deleted, allowing potential unauthorized access. Compute in Prisma Cloud Enterprise Edition is not affected. CVSS-like metrics indicate low overall...
CVE-2025-0138 Prisma Cloud Compute Edition: Insufficient Session Expiration Vulnerability in the Web Interface
Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access. Compute in Prisma Cloud Enterprise Edition is not affected by this issue...
Palo Alto Networks Prisma Cloud Compute Edition 代码问题漏洞
Palo Alto Networks Prisma Cloud Compute Edition is a cloud-native security platform from U.S.-based Palo Alto Networks that provides full lifecycle protection for containers, hosts, and serverless workloads. A security vulnerability exists in Palo Alto Networks Prisma Cloud Compute Edition that...
CVE-2024-5906
A cross-site scripting XSS vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to...
CVE-2024-5906
A cross-site scripting XSS vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to...
CVE-2024-5906
The CVE concerns Palo Alto Networks Prisma Cloud Compute. It describes a Stored Cross-Site Scripting (XSS) vulnerability in the web interface that is exploitable by a malicious administrator who has add/edit permissions for identity providers. The underlying issue allows the attacker to store a J...
CVE-2024-5906 Prisma Cloud Compute: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface
A cross-site scripting XSS vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to...
Prisma Cloud Compute: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface
A cross-site scripting XSS vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to...
PT-2024-37237 · Palo Alto Networks · Palo Alto Networks Prisma Cloud Compute
Name of the Vulnerable Software and Affected Versions: Palo Alto Networks Prisma Cloud Compute affected versions not specified Description: A cross-site scripting XSS issue allows a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the we...
Palo Alto Networks Prisma Cloud Cross-Site Scripting Vulnerability
Palo Alto Networks Prisma Cloud is a comprehensive cloud-native security platform from Palo Alto Networks, Inc. It provides cloud security services. A cross-site scripting vulnerability exists in Palo Alto Networks Prisma Cloud Compute, which originates from a vulnerability that allows a maliciou...
Impact of Rapid Reset and HTTP/2 DoS Vulnerabilities (CVE-2023-44487, CVE-2023-35945)
The Palo Alto Networks Product Security Assurance team is evaluating the recently disclosed denial-of-service DoS vulnerabilities in the HTTP/2 protocol including Rapid Reset CVE-2023-44487 and CVE-2023-35945. If HTTP/2 inspection is enabled in PAN-OS, an ongoing distributed denial-of-service DDo...
CVE-2021-3043
A reflected cross-site scripting XSS vulnerability exists in the Prisma Cloud Compute web console that enables a remote attacker to execute arbitrary JavaScript code in the browser-based web console while an authenticated administrator is using that web interface. Prisma Cloud Compute SaaS versio...
CVE-2021-3043
A reflected cross-site scripting XSS vulnerability exists in the Prisma Cloud Compute web console that enables a remote attacker to execute arbitrary JavaScript code in the browser-based web console while an authenticated administrator is using that web interface. Prisma Cloud Compute SaaS versio...