Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
paloaltonetworks vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2012-6591
The device-management command-line interface in Palo Alto Networks PAN-OS prior to 3.1.10 and 4.0.x prior to 4.0.5 allows remote authenticated administrators to execute arbitrary commands via unspecified vectors, aka Ref ID 31116.
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 4.0.2
Paloaltonetworks Pan-os 4.0.3
Paloaltonetworks Pan-os 4.0.0
Paloaltonetworks Pan-os 4.0.1
Paloaltonetworks Pan-os 4.0.4
10
CVSSv2
CVE-2012-6592
Palo Alto Networks PAN-OS prior to 3.1.10 and 4.0.x prior to 4.0.5 allows remote malicious users to execute arbitrary commands via unspecified vectors, aka Ref ID 31091.
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 4.0.2
Paloaltonetworks Pan-os 4.0.3
Paloaltonetworks Pan-os 4.0.0
Paloaltonetworks Pan-os 4.0.1
Paloaltonetworks Pan-os 4.0.4
10
CVSSv2
CVE-2012-6593
Palo Alto Networks PAN-OS prior to 3.1.10 and 4.0.x prior to 4.0.4 allows remote malicious users to execute arbitrary commands via unspecified vectors, aka Ref ID 30088.
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 4.0.2
Paloaltonetworks Pan-os 4.0.3
Paloaltonetworks Pan-os 4.0.0
Paloaltonetworks Pan-os 4.0.1
9
CVSSv2
CVE-2012-6602
The device-management command-line interface in Palo Alto Networks PAN-OS prior to 3.1.10 and 4.0.x prior to 4.0.4 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Ref ID 30122.
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 4.0.2
Paloaltonetworks Pan-os 4.0.3
Paloaltonetworks Pan-os 4.0.0
Paloaltonetworks Pan-os 4.0.1
4
CVSSv2
CVE-2022-0027
An improper authorization vulnerability in Palo Alto Network Cortex XSOAR software enables authenticated users in non-Read-Only groups to generate an email report that contains summary information about all incidents in the Cortex XSOAR instance, including incidents to which the ...
Paloaltonetworks Cortex Xsoar 6.2.0
Paloaltonetworks Cortex Xsoar 6.1.0
Paloaltonetworks Cortex Xsoar
Paloaltonetworks Cortex Xsoar 6.5.0
7.5
CVSSv2
CVE-2021-3033
An improper verification of cryptographic signature vulnerability exists in the Palo Alto Networks Prisma Cloud Compute console. This vulnerability enables an malicious user to bypass signature validation during SAML authentication by logging in to the Prisma Cloud Compute consol...
Paloaltonetworks Prisma Cloud 20.09
Paloaltonetworks Prisma Cloud 20.04
Paloaltonetworks Prisma Cloud 19.11
Paloaltonetworks Prisma Cloud 20.12
3.6
CVSSv2
CVE-2021-3034
An information exposure through log file vulnerability exists in Cortex XSOAR software where the secrets configured for the SAML single sign-on (SSO) integration can be logged to the '/var/log/demisto/' server logs when testing the integration during setup. This logged ...
Paloaltonetworks Cortex Xsoar 5.5.0
Paloaltonetworks Cortex Xsoar 6.1.0
Paloaltonetworks Cortex Xsoar 6.0.2
Paloaltonetworks Cortex Xsoar 6.0.1
1 Github repository
6.8
CVSSv2
CVE-2021-3051
An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR SAML authentication that enables an unauthenticated network-based attacker with specific knowledge of the Cortex XSOAR instance to access protected resources and perform unauthorized actions ...
Paloaltonetworks Cortex Xsoar 5.5.0
Paloaltonetworks Cortex Xsoar 6.0.2
Paloaltonetworks Cortex Xsoar 6.2.0
Paloaltonetworks Cortex Xsoar 6.1.0
4
CVSSv2
CVE-2022-0011
PAN-OS software provides options to exclude specific websites from URL category enforcement and those websites are blocked or allowed (depending on your rules) regardless of their associated URL category. This is done by creating a custom URL category list or by using an external...
Paloaltonetworks Pan-os
Paloaltonetworks Prisma Access 2.1
Paloaltonetworks Prisma Access 2.2
5.8
CVSSv2
CVE-2012-6606
Palo Alto Networks GlobalProtect prior to 1.1.7, and NetConnect, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof portal servers and obtain sensitive information via a crafted certificate.
Paloaltonetworks Netconnect -
Paloaltonetworks Globalprotect
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »