Lucene search
K
PaloaltoRecent

510 matches found

Palo Alto Networks
Palo Alto Networks
added 2024/07/10 4:0 p.m.22 views

PAN-OS: File Upload Vulnerability in the Panorama Web Interface

An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and crash the Panorama. Repeated attacks eventually cause the Panorama to enter maintenance mode, which...

7CVSS7.1AI score0.00576EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/07/10 4:0 p.m.22 views

PAN-OS: Improper Input Validation Vulnerability in PAN-OS

An improper input validation vulnerability in Palo Alto Networks PAN-OS software enables an attacker with the ability to tamper with the physical file system to elevate privileges. Work around: No work around available...

6.8CVSS6.5AI score0.0023EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/07/10 4:0 p.m.17 views

Cortex XDR Agent: Improper File Signature Verification Checks

An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked...

6.8CVSS7.1AI score0.00128EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/07/10 4:0 p.m.41 views

PAN-OS: CHAP and PAP When Used with RADIUS Authentication Lead to Privilege Escalation

This vulnerability allows an attacker performing a meddler-in-the-middle attack between Palo Alto Networks PAN-OS firewall and a RADIUS server to bypass authentication and escalate privileges to ‘superuser’ when RADIUS authentication is in use and either CHAP or PAP is selected in the RADIUS serv...

9CVSS7AI score0.14859EPSS
Exploits2References1
Palo Alto Networks
Palo Alto Networks
added 2024/07/10 4:0 p.m.49 views

Expedition: Missing Authentication Leads to Admin Account Takeover

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. Note: Expedition is a tool aiding in configuration migration, tuning, and enrichment. Configuration secrets, credential...

9.3CVSS9.7AI score0.91783EPSS
Exploits9References1
Palo Alto Networks
Palo Alto Networks
added 2024/07/01 7:30 p.m.35 views

Informational Bulletin: Impact of OpenSSH regreSSHion Vulnerability

The Palo Alto Networks Product Security Assurance team has evaluated CVE-2024-6387, known as "regreSSHion", as it relates to our products. The SSH features in PAN-OS are not affected by CVE-2024-6387. At present, no other Palo Alto Networks products are known to contain the vulnerable software...

8.1CVSS7.1AI score0.99506EPSS
Exploits68References1
Palo Alto Networks
Palo Alto Networks
added 2024/06/12 4:0 p.m.31 views

Cortex XDR Agent: Local Privilege Escalation (PE) Vulnerability

A privilege escalation PE vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices enables a local user to execute programs with elevated privileges. However, execution does require the local user to successfully exploit a race condition, which makes this vulnerability difficul...

5.2CVSS6.9AI score0.0013EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/06/12 4:0 p.m.24 views

GlobalProtect App: Encrypted Credential Exposure via Log Files

A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user credentials, used for connecting to GlobalProtect, in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting...

5.5CVSS6.3AI score0.00366EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/06/12 4:0 p.m.28 views

Cortex XDR Agent: Local Windows User Can Disable the Agent

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a low privileged local Windows user to disable the agent. This issue may be leveraged by malware to disable the Cortex XDR agent and then to perform malicious activity. Work around: No work...

6.8CVSS6.2AI score0.0041EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/06/12 4:0 p.m.42 views

Cortex XDR Agent: Local Windows User Can Disrupt Functionality of the Agent

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local low privileged Windows user to disrupt some functionality of the agent. However, they are not able to disrupt Cortex XDR agent protection mechanisms using this vulnerability. Work...

7.1CVSS6.2AI score0.26636EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/06/12 4:0 p.m.24 views

Prisma Cloud Compute: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface

A cross-site scripting XSS vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to...

4.8CVSS5.5AI score0.00247EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/05/16 4:0 p.m.99 views

Impact of TunnelVision Vulnerability

The Palo Alto Networks Product Security Assurance team has evaluated the TunnelVision vulnerability as it relates to our products. This issue allows an attacker with the ability to send DHCP messages on the same local area network, such as a rogue Wi-Fi network, to leak traffic outside of the...

7.6CVSS7AI score0.04063EPSS
Exploits1References1
Palo Alto Networks
Palo Alto Networks
added 2024/04/12 6:55 a.m.190 views

PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect

A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the...

10CVSS9.9AI score0.99999EPSS
Exploits43References4
Palo Alto Networks
Palo Alto Networks
added 2024/04/10 4:0 p.m.71 views

PAN-OS: Firewall Denial of Service (DoS) when GTP Security is Disabled

A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote attacker to reboot hardware-based firewalls. Repeated attacks eventually cause the firewall to enter maintenance mode, which requires manual intervention to bring the firewall back online. This affects the...

7.5CVSS7.1AI score0.00909EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/04/10 4:0 p.m.21 views

PAN-OS: Predefined Decryption Exclusions Does Not Work as Intended

An incorrect string comparison vulnerability in Palo Alto Networks PAN-OS software prevents Predefined Decryption Exclusions from functioning as intended. This can cause traffic destined for domains that are not specified in Predefined Decryption Exclusions to be unintentionally excluded from...

5.3CVSS6.7AI score0.00436EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/04/10 4:0 p.m.46 views

PAN-OS: Firewall Denial of Service (DoS) via a Burst of Crafted Packets

A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a burst of crafted packets through the firewall that eventually prevents the firewall from processing traffic. This issue applies only to PA-5400 Series devices that are running PAN-OS software with the SS...

7.5CVSS7AI score0.0093EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/04/10 4:0 p.m.34 views

PAN-OS: Firewall Denial of Service (DoS) via Malformed NTLM Packets

A vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to reboot PAN-OS firewalls when receiving Windows New Technology LAN Manager NTLM packets from Windows servers. Repeated attacks eventually cause the firewall to enter maintenance mode, which requires manual...

7.5CVSS6.8AI score0.00885EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/04/10 4:0 p.m.20 views

PAN-OS: Weak Certificate Strength in Panorama Software Leads to Sensitive Information Disclosure

A weak low bit strength device certificate in Palo Alto Networks Panorama software enables an attacker to perform a meddler-in-the-middle MitM attack to capture encrypted traffic between the Panorama management server and the firewalls it manages. With sufficient computing resources, the attacker...

5.3CVSS6.3AI score0.0017EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/04/10 4:0 p.m.55 views

PAN-OS: User Impersonation in GlobalProtect SSL VPN

A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enables an authenticated attacker to impersonate another user and send network packets to internal assets. However, this vulnerability does not allow the attacker to receive response packets from those internal...

5CVSS6.8AI score0.00349EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/04/10 4:0 p.m.21 views

PAN-OS: Improper Group Membership Change Vulnerability in Cloud Identity Engine (CIE)

A vulnerability in how Palo Alto Networks PAN-OS software processes data received from Cloud Identity Engine CIE agents enables modification of User-ID groups. This impacts user access to network resources where users may be inappropriately denied or allowed access to resources based on your...

9.1CVSS6.7AI score0.00576EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/04/01 7:30 p.m.34 views

Informational: Impact of Malicious Code in XZ Tools and Libraries (CVE-2024-3094)

The Palo Alto Networks Product Security Assurance team has evaluated the supply chain compromise impacting versions 5.6.0 and 5.6.1 of XZ tools and libraries. These versions of the software may allow unauthorized access to affected systems. Based on the information presently known, Palo Alto...

10CVSS6.7AI score0.85974EPSS
Exploits40References1
Palo Alto Networks
Palo Alto Networks
added 2024/03/13 4:0 p.m.26 views

GlobalProtect App: Local Privilege Escalation (PE) Vulnerability

A privilege escalation PE vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition. Work around: No work around...

4.5CVSS7.2AI score0.00386EPSS
Exploits1References1
Palo Alto Networks
Palo Alto Networks
added 2024/03/13 4:0 p.m.26 views

PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss

An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interfa...

4.3CVSS4.6AI score0.00568EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/03/13 4:0 p.m.22 views

GlobalProtect App: Local User Can Disable GlobalProtect

An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app without needing the passcode in configurations that allow a user to disable GlobalProtect with a passcode. Work around: You can mitigate this issue by setting "Allow User to Disable...

5.5CVSS5.5AI score0.00153EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/02/14 5:0 p.m.57 views

PAN-OS: Insufficient Session Expiration Vulnerability in the Web Interface

Web sessions in the management interface in Palo Alto Networks PAN-OS software do not expire in certain situations, making it susceptible to unauthorized access. Work around: Ensure that inactivity-based screen locks are enforced on endpoints with access to the PAN-OS web interface...

8.8CVSS7AI score0.00503EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/02/14 5:0 p.m.51 views

PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface

A cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface on Panorama appliances. This enables the impersonation of another authenticated administrator. Work aroun...

6.8CVSS5.7AI score0.00395EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/02/14 5:0 p.m.55 views

PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Portal

A reflected cross-site scripting XSS vulnerability in the GlobalProtect portal feature of Palo Alto Networks PAN-OS software enables execution of malicious JavaScript in the context of a user’s browser if that user clicks on a malicious link, allowing phishing attacks that could lead to credentia...

6.1CVSS5.9AI score0.00509EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/02/14 5:0 p.m.33 views

PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication

A reflected cross-site scripting XSS vulnerability in the Captive Portal feature of Palo Alto Networks PAN-OS software enables execution of malicious JavaScript in the context of an authenticated Captive Portal user’s browser if that user clicks on a malicious link, allowing phishing attacks that...

6.1CVSS5.8AI score0.00382EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/02/14 5:0 p.m.20 views

PAN-OS: Improper IP Address Verification in GlobalProtect Gateway

An improper verification vulnerability in the GlobalProtect gateway feature of Palo Alto Networks PAN-OS software enables a malicious user with stolen credentials to establish a VPN connection from an unauthorized IP address. Work around: No work around available...

6.3CVSS6.7AI score0.00179EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2024/01/09 1:30 a.m.69 views

Impact of Terrapin SSH Attack

The Terrapin attack allows an attacker with the ability to intercept SSH traffic on affected Palo Alto Networks products through machine-in-the-middle or MitM attacks to downgrade connection security and force the usage of less secure client authentication algorithms when an administrator or user...

5.9CVSS7AI score0.93305EPSS
Exploits4References1
Palo Alto Networks
Palo Alto Networks
added 2023/12/13 5:0 p.m.32 views

PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface

A cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface. Then, when viewed by a properly authenticated administrator, the JavaScript payload executes and disguis...

4.8CVSS5.5AI score0.00415EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/12/13 5:0 p.m.41 views

PAN-OS: OS Command Injection Vulnerability in the XML API

An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall. Work around: Customers with a Threat Prevention subscription can...

7.7CVSS7.8AI score0.01145EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/12/13 5:0 p.m.56 views

PAN-OS: OS Command Injection Vulnerability in the Web Interface

An OS command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall. Work around: This issue requires the attacker to have authenticated access...

7.7CVSS7.9AI score0.01144EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/12/13 5:0 p.m.41 views

PAN-OS: XML API Keys Revoked by Read-Only PAN-OS Administrator

An improper privilege management vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-only administrator to revoke active XML API keys from the firewall and disrupt XML API usage. Work around: This issue requires the attacker to have authenticated access to the PAN-OS...

9.9CVSS6.7AI score0.00555EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/12/13 5:0 p.m.20 views

PAN-OS: DOM-Based Cross-Site Scripting (XSS) Vulnerability in the Web Interface

A DOM-Based cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to execute a JavaScript payload in the context of an administrator’s browser when they view a specifically crafted link to the PAN-OS web interface. Work around: No work around...

8.8CVSS5.5AI score0.00659EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/12/13 5:0 p.m.32 views

PAN-OS: Plaintext Disclosure of External System Integration Credentials

A credential disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-only administrator to obtain the plaintext credentials of stored external system integrations such as LDAP, SCP, RADIUS, TACACS+, and SNMP from the web interface. Work around: This issue...

7.7CVSS6.2AI score0.00624EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/12/13 5:0 p.m.30 views

PAN-OS: File Upload Vulnerability in the Web Interface

An arbitrary file upload vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall. Work around: This issue...

8.8CVSS7.5AI score0.00572EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/11/08 5:0 p.m.16 views

Cortex XSOAR: Local Privilege Escalation (PE) Vulnerability in Cortex XSOAR Engine

A local privilege escalation PE vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system enables a local attacker to execute programs with elevated privileges if the attacker has shell access to the engine. Work around: No work around available...

6.7CVSS7.1AI score0.00174EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/10/12 8:40 p.m.63 views

Impact of curl and libcurl Vulnerabilities (CVE-2023-38545, CVE-2023-38546)

The Palo Alto Networks Product Security Assurance team has evaluated the curl and libcurl vulnerabilities CVE-2023-38545, CVE-2023-38546 that were disclosed on October 11, 2023 as they relate to our products. At this time, there are no demonstrated scenarios that enable successful exploitation of...

9.8CVSS7.4AI score0.78483EPSS
Exploits6References1
Palo Alto Networks
Palo Alto Networks
added 2023/10/11 4:0 p.m.13 views

Cortex XSOAR: Cleartext Exposure of Client Certificate Key in Kafka v3 Integration

A problem with the Cortex XSOAR Kafka v3 integration can result in the cleartext exposure of the configured Kafka client certificate key. Work around: No work around available...

6.8AI score
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/10/11 4:0 p.m.60 views

Impact of Rapid Reset and HTTP/2 DoS Vulnerabilities (CVE-2023-44487, CVE-2023-35945)

The Palo Alto Networks Product Security Assurance team is evaluating the recently disclosed denial-of-service DoS vulnerabilities in the HTTP/2 protocol including Rapid Reset CVE-2023-44487 and CVE-2023-35945. If HTTP/2 inspection is enabled in PAN-OS, an ongoing distributed denial-of-service DDo...

7.5CVSS8.2AI score0.99999EPSS
Exploits19References1
Palo Alto Networks
Palo Alto Networks
added 2023/10/02 11:40 p.m.58 views

Impact of libwebp Vulnerability CVE-2023-4863

The Palo Alto Networks Product Security Assurance team has evaluated the recently disclosed critical libwebp vulnerability CVE-2023-4863 as it relates to our products. While PAN-OS 10.2 and later versions include this library, PAN-OS software does not offer any scenarios required for the successf...

8.8CVSS8.7AI score0.99735EPSS
Exploits9References1
Palo Alto Networks
Palo Alto Networks
added 2023/09/13 4:0 p.m.24 views

Cortex XDR Agent: Local Windows User Can Disable the Agent

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to disable the agent. Work around: No work around available...

5.5CVSS6.6AI score0.00305EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/09/13 4:0 p.m.49 views

PAN-OS: Denial-of-Service (DoS) Vulnerability in BGP Software

BGP software such as FRRouting FRR included as part of the PAN-OS, Prisma SD-WAN ION, and Prisma Access routing features enable a remote attacker to incorrectly reset network sessions though an invalid BGP update. This issue is applicable only to devices and appliances with BGP routing features...

7.5CVSS7.3AI score0.01437EPSS
Exploits1References2
Palo Alto Networks
Palo Alto Networks
added 2023/07/12 4:0 p.m.53 views

PAN-OS: Read System Files and Resources During Configuration Commit

A vulnerability exists in Palo Alto Networks PAN-OS software that enables an authenticated administrator with the privilege to commit a specifically created configuration to read local files and resources from the system. Work around: This issue requires the attacker to have authenticated access ...

5.5CVSS6.5AI score0.00388EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/06/14 4:0 p.m.21 views

GlobalProtect App: Local Privilege Escalation (PE) Vulnerability

A local privilege escalation PE vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated privileges. Work around: No work around available...

7.8CVSS7.1AI score0.0018EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/06/14 4:0 p.m.25 views

PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication

A reflected cross-site scripting XSS vulnerability in the Captive Portal feature of Palo Alto Networks PAN-OS software can allow a JavaScript payload to be executed in the context of an authenticated Captive Portal user’s browser when they click on a specifically crafted link. Work around:...

5.4CVSS5.6AI score0.00375EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/05/10 4:0 p.m.57 views

PAN-OS: Local File Disclosure Vulnerability in the PAN-OS Web Interface

A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write administrator with access to the web interface to export local files from the firewall through a race condition. Work around: This issue requires the attacker to have authenticated access to...

4.4CVSS5.9AI score0.00542EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/05/10 4:0 p.m.31 views

PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface

A cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances enables an authenticated read-write administrator to store a JavaScript payload in the web interface that will execute in the context of another administrator’s browser when viewed. Work around:...

6.5CVSS5.8AI score0.00427EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2023/04/12 4:0 p.m.17 views

GlobalProtect App: Local File Deletion Vulnerability

A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a user to delete system files from the endpoint with elevated privileges through a race condition. Work around: No work around available...

6.3CVSS6.6AI score0.00111EPSS
Exploits0References1
Total number of security vulnerabilities510