Pan-os@6.1.0 Security Vulnerabilities and Issues — Pan-os@6.1.0 CVE List

Lucene search

PaloaltonetworksPan-os6.1.0

3 matches found

CVE•added 2018/01/10 6:29 p.m.•44 views

CVE-2017-17841

Palo Alto Networks PAN-OS 6.1, 7.1, and 8.0.x before 8.0.7, when an interface implements SSL decryption with RSA enabled or hosts a GlobalProtect portal or gateway, might allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.

5.9CVSS6AI score0.01639EPSS

CVE•added 2015/06/02 2:59 p.m.•43 views

CVE-2015-4162

XML external entity (XXE) vulnerability in the management interface in PAN-OS before 5.0.16, 6.x before 6.0.8, and 6.1.x before 6.1.4 allows remote authenticated administrators to obtain sensitive information via crafted XML data.

4CVSS5.9AI score0.00332EPSS

CVE•added 2017/03/15 2:59 p.m.•38 views

CVE-2017-5584

Cross-site scripting (XSS) vulnerability in the Management Web Interface in Palo Alto Networks PAN-OS 5.1, 6.x before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

5.4CVSS5AI score0.00208EPSS