Lucene search
K

504 matches found

EUVD
EUVD
added 2026/05/13 9:32 p.m.18 views

EUVD-2026-30135

A denial of service DoS vulnerability in Palo Alto Networks Prisma SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to cause a system disruption by sending a specially crafted IPv6 packet...

7.1CVSS5.8AI score0.00161EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.17 views

EUVD-2026-30103

A stored cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama virtual an...

6.9CVSS5.7AI score0.0028EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.8 views

EUVD-2026-30099

An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle MitM attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can...

8.6CVSS5.8AI score0.00107EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.8 views

EUVD-2026-30087

A race condition vulnerability in Palo Alto Networks Prisma® Browser enables a locally authenticated non-admin user to bypass certain access and data control policies...

5.8CVSS5.8AI score0.00173EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.8 views

EUVD-2026-30089

A code injection vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to its AppleScript interface allowing a locally authenticated non-admin user to leverage this exposed Apple Event handler to send unauthorized commands to the browser...

7.3CVSS5.9AI score0.00144EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.8 views

EUVD-2026-30095

An improper certificate validation vulnerability in the Palo Alto Networks Prisma SD-WAN ION enables man-in-the-middle MitM attacker to impersonate the controller...

7.7CVSS5.8AI score0.00107EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.10 views

EUVD-2026-30096

Multiple information disclosure vulnerabilities in Prisma Access Agent® allow a local user to access sensitive configuration data and credentials. The Prisma Access Agent on Linux, ChromeOS, Android, and iOS are not affected...

6.8CVSS5.8AI score0.0014EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.10 views

EUVD-2026-30107

Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security ri...

8.6CVSS5.9AI score0.01336EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.12 views

EUVD-2026-30098

Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access Agent® allow a local attacker to bypass authentication controls and execute privileged operations...

8.5CVSS5.9AI score0.00166EPSS
Exploits0References2
NVD
NVD
added 2026/05/13 8:16 p.m.25 views

CVE-2026-0243

A denial of service DoS vulnerability in Palo Alto Networks Prisma SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to cause a system disruption by sending a specially crafted IPv6 packet...

7.1CVSS0.00161EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:17 p.m.12 views

CVE-2026-0261

Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security ri...

8.6CVSS0.01336EPSS
Exploits0References2
NVD
NVD
added 2026/05/13 7:16 p.m.8 views

CVE-2026-0244

An improper certificate validation vulnerability in the Palo Alto Networks Prisma SD-WAN ION enables man-in-the-middle MitM attacker to impersonate the controller...

7.7CVSS0.00107EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:16 p.m.8 views

CVE-2026-0245

Multiple information disclosure vulnerabilities in Prisma Access Agent® allow a local user to access sensitive configuration data and credentials. The Prisma Access Agent on Linux, ChromeOS, Android, and iOS are not affected...

6.8CVSS0.0014EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:16 p.m.9 views

CVE-2026-0247

Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access Agent® allow a local attacker to bypass authentication controls and execute privileged operations...

8.5CVSS0.00166EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:16 p.m.14 views

CVE-2026-0248

An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle MitM attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can...

8.6CVSS0.00107EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:16 p.m.10 views

CVE-2026-0246

A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. This allows the user to execute arbitrary code an...

8.5CVSS0.00144EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:16 p.m.14 views

CVE-2026-0236

A code injection vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to its AppleScript interface allowing a locally authenticated non-admin user to leverage this exposed Apple Event handler to send unauthorized commands to the browser...

7.3CVSS0.00144EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:16 p.m.7 views

CVE-2026-0235

A race condition vulnerability in Palo Alto Networks Prisma® Browser enables a locally authenticated non-admin user to bypass certain access and data control policies...

5.8CVSS0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 7:10 p.m.47 views

CVE-2026-0243 Prisma SD-WAN: Denial of Service (DoS) Vulnerability Through IPv6 Crafted Packet

A denial of service DoS vulnerability in Palo Alto Networks Prisma SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to cause a system disruption by sending a specially crafted IPv6 packet...

7.1CVSS0.00161EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 7:10 p.m.30 views

CVE-2026-0243

The CVE-2026-0243 entry concerns Palo Alto Networks Prisma SD-WAN ION devices. A denial-of-service condition arises when an unauthenticated attacker on an adjacent network sends a specially crafted IPv6 packet, causing a system disruption. The description identifies this as a high-severity issue ...

7.1CVSS5.8AI score0.00161EPSS
Exploits0References1
Rows per page
Query Builder