Lucene search
K
PaloaltoRecent

510 matches found

Palo Alto Networks
Palo Alto Networks
•added 2020/06/10 4:0 p.m.•46 views

PAN-OS: OS command injection vulnerability in management interface certificate generator

An OS Command Injection vulnerability in the PAN-OS web management interface allows authenticated administrators to execute arbitrary OS commands with root privileges by sending a malicious request to generate new certificates for use in the PAN-OS configuration. Work around: This issue affects t...

7.2CVSS2.5AI score0.01768EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•68 views

PAN-OS: Panorama External control of file vulnerability leads to privilege escalation

An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT processing logic that allows an unauthenticated user with network access to PAN-OS management interface to write attacker supplied file on the system and elevate privileges. Work around: This issue...

9.8CVSS2.1AI score0.01334EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•74 views

PAN-OS: Panorama context switch session cookie disclosure

A cleartext transmission of sensitive information vulnerability in Palo Alto Networks PAN-OS Panorama that discloses an authenticated PAN-OS administrator's PAN-OS session cookie. When an administrator issues a context switch request into a managed firewall with an affected PAN-OS Panorama versio...

8.8CVSS1.7AI score0.00639EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•58 views

PAN-OS: Authenticated user command injection vulnerability

An OS command injection vulnerability in PAN-OS management interface allows an authenticated administrator to execute arbitrary OS commands with root privileges. Work around: This issue affects the management interface of PAN-OS and is strongly mitigated by following best practices for securing t...

7.2CVSS3AI score0.02248EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•60 views

PAN-OS: Improper SAML SSO authorization of shared local users

An improper authorization vulnerability in PAN-OS that mistakenly uses the permissions of local linux users instead of the intended SAML permissions of the account when the username is shared for the purposes of SSO authentication. This can result in authentication bypass and unintended resource...

8.8CVSS3.2AI score0.00892EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•101 views

PAN-OS: GlobalProtect Clientless VPN session hijacking

A cross-site scripting XSS vulnerability exists when visiting malicious websites with the Palo Alto Networks GlobalProtect Clientless VPN that can compromise the user's active session. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0...

7.1CVSS2.7AI score0.00834EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•51 views

PAN-OS: Authenticated administrator can delete arbitrary system file

An external control of filename vulnerability in the command processing of PAN-OS allows an authenticated administrator to delete arbitrary system files affecting the integrity of the system or causing denial of service to all PAN-OS services. This issue affects: All versions of PAN-OS 7.1 and 8....

6.5CVSS3.4AI score0.00938EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•62 views

PAN-OS: Panorama authentication bypass vulnerability

An authentication bypass vulnerability in the Panorama context switching feature allows an attacker with network access to a Panorama's management interface to gain privileged access to managed firewalls. An attacker requires some knowledge of managed firewalls to exploit this issue. This issue...

9CVSS1.8AI score0.01324EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•63 views

GlobalProtect App: Passwords may be logged in clear text while collecting troubleshooting logs

Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app also known as GlobalProtect Agent for MacOS and Windows. For this issue to occur all of these conditions must be true: 1 'Sav...

6.8CVSS2.3AI score0.00938EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•160 views

PAN-OS: Nginx integer overflow may lead to information leak

Nginx web-server included with PAN-OS is vulnerable to an integer overflow vulnerability that can leak potentially a cache file header if a response was returned from cache. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions...

7.5CVSS4.3AI score0.62597EPSS
Exploits6References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•59 views

PAN-OS: Temporary file race condition vulnerability in PAN-OS leads to local privilege escalation

A race condition due to insecure creation of a file in a temporary directory vulnerability in PAN-OS allows for root privilege escalation from a limited linux user account. This allows an attacker who has escaped the restricted shell as a low privilege administrator, possibly by exploiting anothe...

7CVSS2.2AI score0.00568EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•62 views

PAN-OS: OS command injection in management server

An OS command injection vulnerability in the management server component of PAN-OS allows an authenticated user to potentially execute arbitrary commands with root privileges. Work around: This issue affects the management interface of PAN-OS and is strongly mitigated by following best practices...

7.2CVSS2.9AI score0.02248EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•58 views

PAN-OS: OS command injection or arbitrary file deletion vulnerability

An OS command injection and external control of filename vulnerability in Palo Alto Networks PAN-OS allows authenticated administrators to execute code with root privileges or delete arbitrary system files and impact the system's integrity or cause a denial of service condition. Work around: This...

7.2CVSS2.8AI score0.02755EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•46 views

PAN-OS: Buffer overflow in the management server

A buffer overflow vulnerability in the PAN-OS management server allows authenticated users to crash system processes or potentially execute arbitrary code with root privileges. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 version...

8.8CVSS4.1AI score0.01911EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•60 views

PAN-OS: Buffer overflow in management server payload parser

A stack-based buffer overflow vulnerability in the management server component of PAN-OS that allows an authenticated user to potentially execute arbitrary code with root privileges. Work around: This issue affects the management interface of PAN-OS and is strongly mitigated by following best...

8.8CVSS2.6AI score0.01895EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•60 views

PAN-OS: Panorama SD WAN arbitrary file creation

An external control of filename vulnerability in the SD WAN component of Palo Alto Networks PAN-OS Panorama allows an authenticated administrator to send a request that results in the creation and write of an arbitrary file on all firewalls managed by the Panorama. In some cases this results in...

7.2CVSS1.4AI score0.01951EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•67 views

PAN-OS: Management server rasmgr denial of service

A NULL pointer dereference vulnerability in Palo Alto Networks PAN-OS allows an authenticated administrator to send a request that causes the rasmgr daemon to crash. Repeated attempts to send this request result in denial of service to all PAN-OS services by restarting the device and putting it...

4.9CVSS3.3AI score0.01145EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•57 views

PAN-OS: Predictable temporary file vulnerability

A predictable temporary file vulnerability in PAN-OS allows a local authenticated user with shell access to corrupt arbitrary system files affecting the integrity of the system. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions...

4.4CVSS3.7AI score0.00236EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•73 views

PAN-OS: Panorama management server log injection

A missing authorization vulnerability in the management server component of PAN-OS Panorama allows a remote unauthenticated user to inject messages into the management server ms.log file. This vulnerability can be leveraged to obfuscate an ongoing attack or fabricate log entries in the ms.log fil...

5.3CVSS1.3AI score0.00905EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•89 views

PAN-OS: GlobalProtect Portal PHP session fixation vulnerability

The GlobalProtect Portal feature in PAN-OS does not set a new session identifier after a successful user login, which allows session fixation attacks, if an attacker is able to control a user's session ID. Work around: There are no known workarounds for this issue...

5.4CVSS3.3AI score0.00433EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•58 views

PAN-OS: GlobalProtect registration open redirect

An open redirection vulnerability in the GlobalProtect component of Palo Alto Networks PAN-OS allows an attacker to specify an arbitrary redirection target away from the trusted GlobalProtect gateway. If the user then successfully authenticates it will cause them to access an unexpected and...

6.1CVSS4AI score0.00893EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•59 views

PAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak

Improper restriction of XML external entity reference 'XXE' vulnerability in Palo Alto Networks Panorama management service allows remote unauthenticated attackers with network access to the Panorama management interface to read arbitrary files on the system. This issue affects: All versions of...

7.5CVSS2.4AI score0.01935EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•55 views

PAN-OS: OS injection vulnerability in PAN-OS management server

An OS Command Injection vulnerability in PAN-OS management server allows authenticated users to inject and execute arbitrary shell commands with root privileges. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7...

8.8CVSS3.8AI score0.02659EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•61 views

PAN-OS: Panorama registration denial of service

An improper input validation vulnerability in the configuration daemon of Palo Alto Networks PAN-OS Panorama allows for a remote unauthenticated user to send a specifically crafted registration request to the device that causes the configuration service to crash. Repeated attempts to send this...

7.5CVSS2.3AI score0.01846EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•81 views

PAN-OS: Spoofed Kerberos key distribution center authentication bypass

An authentication bypass by spoofing vulnerability exists in the authentication daemon and User-ID components of Palo Alto Networks PAN-OS by failing to verify the integrity of the Kerberos key distribution center KDC before authenticating users. This affects all forms of authentication that use ...

8.1CVSS2AI score0.01297EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/05/13 4:0 p.m.•54 views

PAN-OS: DOM-Based cross site scripting vulnerability in management web interface

A DOM-Based Cross Site Scripting Vulnerability exists in PAN-OS and Panorama Management Web Interfaces. A remote attacker able to convince an authenticated administrator to click on a crafted link to PAN-OS and Panorama Web Interfaces could execute arbitrary JavaScript code in the administrator's...

8.8CVSS2.5AI score0.00828EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•36 views

Secdo: Privilege escalation via hardcoded script path

Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with 'create folders or append data' access to the root of the OS disk C:\ to gain system privileges if the path does not already exist or is writable. This issue affects all versions of Secdo...

7.8CVSS4.1AI score0.00311EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•37 views

Secdo: Incorrect Default Permissions

Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. This issue affects all versions Secdo for Windows. Work around: Change permission on C:\Programdata\Secdo\Logs to not allow...

7.8CVSS4.7AI score0.00254EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•41 views

Traps: Insecure temporary file vulnerability may allow privilege escalation on Windows

An insecure temporary file vulnerability in Palo Alto Networks Traps allows a local authenticated Windows user to escalate privileges or overwrite system files. This issue affects Palo Alto Networks Traps 5.0 versions before 5.0.8; 6.1 versions before 6.1.4 on Windows; all versions of 6.0, 4.2,...

7.8CVSS4.3AI score0.00277EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•37 views

Secdo: Local authenticated users can cause Windows system crash

Improper input validation vulnerability in Secdo allows an authenticated local user with 'create folders or append data' access to the root of the OS disk C:\ to cause a system crash on every login. This issue affects all versions Secdo for Windows. Work around: Exploitation of this issue can be...

5.5CVSS4AI score0.00261EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•41 views

GlobalProtect App: VPN cookie local information disclosure

An information exposure vulnerability in the logging component of Palo Alto Networks GlobalProtect App allows a local authenticated user to read VPN cookie information when the troubleshooting logging level is set to "Dump". This issue affects Palo Alto Networks GlobalProtect App 5.0 versions pri...

3.9CVSS2.1AI score0.00301EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•53 views

PAN-OS on PA-7000 Series: Varrcvr daemon network-based denial of service or privilege escalation

A format string vulnerability in the Varrcvr daemon of PAN-OS on PA-7000 Series devices with a Log Forwarding Card LFC allows remote attackers to crash the daemon creating a denial of service condition or potentially execute code with root privileges. This issue affects Palo Alto Networks PAN-OS...

9.8CVSS4.8AI score0.03367EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•41 views

PAN-OS: Buffer overflow in the management server

A stack-based buffer overflow vulnerability in the management server component of PAN-OS allows an authenticated user to upload a corrupted PAN-OS configuration and potentially execute code with root privileges. This issue affects Palo Alto Networks PAN-OS 8.1 versions before 8.1.13; 9.0 versions...

7.2CVSS4.3AI score0.02132EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•43 views

VM-Series on Microsoft Azure: Inadvertent collection of credentials in Tech support files on HA configured VMs

TechSupport files generated on Palo Alto Networks VM Series firewalls for Microsoft Azure platform configured with high availability HA inadvertently collect Azure dashboard service account credentials. These credentials are equivalent to the credentials associated with the Contributor role in...

5.8CVSS0.6AI score0.00307EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•41 views

GlobalProtect App: Local privilege escalation due to an unquoted search path vulnerability

An unquoted search path vulnerability in the Windows release of GlobalProtect App allows an authenticated local user with file creation privileges on the root of the OS disk C:\ or to Program Files directory to gain system privileges. This issue affects Palo Alto Networks GlobalProtect App 5.0...

6.7CVSS4.7AI score0.0037EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/04/08 4:0 p.m.•38 views

GlobalProtect App: Incorrect privilege assignment allows local privilege escalation

An incorrect privilege assignment vulnerability when writing application-specific files in the Palo Alto Networks GlobalProtect App for Linux on ARM platform allows a local authenticated user to gain root privileges on the system. This issue affects Palo Alto Networks GlobalProtect App for Linux...

7.8CVSS5.4AI score0.00265EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/03/11 4:0 p.m.•59 views

PAN-OS: Predictable temporary filename vulnerability allows local privilege escalation

A predictable temporary filename vulnerability in PAN-OS allows local privilege escalation. This issue allows a local attacker who bypassed the restricted shell to execute commands as a low privileged user and gain root access on the PAN-OS hardware or virtual appliance. This issue affects only...

7.8CVSS4.7AI score0.00362EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/03/11 4:0 p.m.•76 views

PAN-OS: Shell injection vulnerability in PAN-OS CLI allows execution of shell commands

A shell command injection vulnerability in the PAN-OS CLI allows a local authenticated user to escape the restricted shell and escalate privileges. This issue affects only PAN-OS 8.1 versions earlier than PAN-OS 8.1.13. This issue does not affect PAN-OS 7.1, PAN-OS 9.0, or later PAN-OS versions...

7.8CVSS3.3AI score0.00627EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/03/11 4:0 p.m.•68 views

PAN-OS: A format string vulnerability in PAN-OS log daemon (logd) on Panorama allows local privilege escalation

A format string vulnerability in the PAN-OS log daemon logd on Panorama allows a network based attacker with knowledge of registered firewall devices and access to Panorama management interfaces to execute arbitrary code, bypassing the restricted shell and escalating privileges. This issue affect...

8.1CVSS3.7AI score0.01001EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/02/12 5:0 p.m.•36 views

GlobalProtect App: Local denial-of-service (DoS) vulnerability on MacOS

A denial-of-service DoS vulnerability in Palo Alto Networks GlobalProtect App running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect App 5.0.5 and earlier versions of GlobalProtect App 5.0 on Mac OS. Work around: n/a...

5.5CVSS3AI score0.0028EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/02/12 5:0 p.m.•34 views

Expedition Migration Tool: Insufficient Cross Site Request Forgery protection.

Insufficient Cross-Site Request Forgery XSRF protection on Expedition Migration Tool allows remote unauthenticated attackers to hijack the authentication of administrators and to perform actions on the Expedition Migration Tool. This issue affects Expedition Migration Tool 1.1.51 and earlier...

8.8CVSS4AI score0.0051EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2020/02/12 5:0 p.m.•24 views

Missing XML Validation in PAN-OS Web Interface

Missing XML validation vulnerability in the PAN-OS web interface on Palo Alto Networks PAN-OS software allows authenticated users to inject arbitrary XML that results in privilege escalation. This issue affects PAN-OS 8.1 versions earlier than PAN-OS 8.1.12 and PAN-OS 9.0 versions earlier than...

8.8CVSS3.5AI score0.00998EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2019/12/19 7:35 p.m.•59 views

PAN-OS on PA-7000 Series: Improper restriction of communication to Log Forwarding Card (LFC) allows root access

Improper restriction of communications to Log Forwarding Card LFC on PA-7000 Series devices with second-generation Switch Management Card SMC may allow an attacker with network access to the LFC to gain root access to PAN-OS. This issue affects PAN-OS 9.0 versions prior to 9.0.5-h3 on PA-7080 and...

1AI score0.01679EPSS
Exploits0References1Affected Software1
Palo Alto Networks
Palo Alto Networks
•added 2019/12/19 7:35 p.m.•8 views

PAN-OS on PA-7000 Series: Improper restriction of communication to Log Forwarding Card (LFC) allows root access

Improper restriction of communications to Log Forwarding Card LFC on PA-7000 Series devices with second-generation Switch Management Card SMC may allow an attacker with network access to the LFC to gain root access to PAN-OS. This issue affects PAN-OS 9.0 versions prior to 9.0.5-h3 on PA-7080 and...

10CVSS7.7AI score0.01679EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2019/12/04 5:0 p.m.•9 views

PAN-OS: Custom-role users may escalate privileges

An improper authentication check in Palo Alto Networks PAN-OS may allow an authenticated low privileged non-superuser custom role user to elevate privileges and become superuser. This issue affects PAN-OS 7.1 versions prior to 7.1.25; 8.0 versions prior to 8.0.20; 8.1 versions prior to 8.1.11; 9....

7.8CVSS7.2AI score0.00335EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2019/12/04 5:0 p.m.•163 views

OpenSSL vulnerability CVE-2019-1559 has been resolved in PAN-OS

The OpenSSL library has been updated in PAN-OS to resolve CVE-2019-1559. This is a cryptographic vulnerability that under certain situations may allow a remote attacker to decrypt data by observing server responses to different types of errors. This issue affects Palo Alto Networks PAN-OS 7.1...

3.9AI score0.17139EPSS
Exploits0References1Affected Software1
Palo Alto Networks
Palo Alto Networks
•added 2019/12/04 5:0 p.m.•11 views

OpenSSL vulnerability CVE-2019-1559 has been resolved in PAN-OS

The OpenSSL library has been updated in PAN-OS to resolve CVE-2019-1559. This is a cryptographic vulnerability that under certain situations may allow a remote attacker to decrypt data by observing server responses to different types of errors. This issue affects Palo Alto Networks PAN-OS 7.1...

5.9CVSS7.1AI score0.17139EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
•added 2019/12/04 5:0 p.m.•88 views

PAN-OS: Custom-role users may escalate privileges

An improper authentication check in Palo Alto Networks PAN-OS may allow an authenticated low privileged non-superuser custom role user to elevate privileges and become superuser. This issue affects PAN-OS 7.1 versions prior to 7.1.25; 8.0 versions prior to 8.0.20; 8.1 versions prior to 8.1.11; 9....

5.2AI score0.00335EPSS
Exploits0References1Affected Software1
Palo Alto Networks
Palo Alto Networks
•added 2019/10/15 7:0 a.m.•103 views

Local Privilege Escalation in GlobalProtect App for Linux and Mac OS

A Local Privilege Escalation vulnerability exists in GlobalProtect App for Linux and Mac OSX that can allow non-root users to overwrite root files on the file system. Ref GPC-8945, CVE-2019-17436 Successful exploitation of this issue may allow a low-privileged local user to escalate their...

3.5AI score0.0031EPSS
Exploits0References1Affected Software1
Palo Alto Networks
Palo Alto Networks
•added 2019/10/15 7:0 a.m.•7 views

Local Privilege Escalation in GlobalProtect App for Linux and Mac OS

A Local Privilege Escalation vulnerability exists in GlobalProtect App for Linux and Mac OSX that can allow non-root users to overwrite root files on the file system. Ref GPC-8945, CVE-2019-17436 Successful exploitation of this issue may allow a low-privileged local user to escalate their...

7.1CVSS7.2AI score0.0031EPSS
Exploits0References1
Total number of security vulnerabilities510