Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
leads vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-3387
A weak (low bit strength) device certificate in Palo Alto Networks Panorama software enables an malicious user to perform a meddler-in-the-middle (MitM) attack to capture encrypted traffic between the Panorama management server and the firewalls it manages. With sufficient comput...
801
VMScore
CVE-2022-0024
A vulnerability exists in Palo Alto Networks PAN-OS software that enables an authenticated network-based PAN-OS administrator to upload a specifically created configuration that disrupts system processes and potentially execute arbitrary code with root privileges when the configu...
Paloaltonetworks Pan-os
NA
CVE-2024-2433
An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log int...
641
VMScore
CVE-2022-0026
A local privilege escalation (PE) vulnerability exists in Palo Alto Networks Cortex XDR agent software on Windows that enables an authenticated local user with file creation privilege in the Windows root directory (such as C:\) to execute a program with elevated privileges. This ...
Paloaltonetworks Cortex Xdr Agent 6.1
Paloaltonetworks Cortex Xdr Agent 6.1.4
Paloaltonetworks Cortex Xdr Agent 6.1.5
Paloaltonetworks Cortex Xdr Agent 6.1.6
Paloaltonetworks Cortex Xdr Agent 6.1.7
Paloaltonetworks Cortex Xdr Agent 6.1.8
Paloaltonetworks Cortex Xdr Agent 6.1.9
Paloaltonetworks Cortex Xdr Agent 7.4.4
Paloaltonetworks Cortex Xdr Agent 7.4.3
Paloaltonetworks Cortex Xdr Agent 7.4.2
Paloaltonetworks Cortex Xdr Agent 7.4.1
Paloaltonetworks Cortex Xdr Agent 7.5.1
Paloaltonetworks Cortex Xdr Agent 7.5.2
Paloaltonetworks Cortex Xdr Agent 7.5.3
Paloaltonetworks Cortex Xdr Agent 7.6.1
Paloaltonetworks Cortex Xdr Agent 7.6.2
Paloaltonetworks Cortex Xdr Agent 7.7
Paloaltonetworks Cortex Xdr Agent 7.7.1
Paloaltonetworks Cortex Xdr Agent 7.5
312
VMScore
CVE-2013-1417
do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 prior to 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service (daemon crash) via a TGS-REQ request that triggers an attempted cross-re...