Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
paloaltonetworks vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-6591
The device-management command-line interface in Palo Alto Networks PAN-OS prior to 3.1.10 and 4.0.x prior to 4.0.5 allows remote authenticated administrators to execute arbitrary commands via unspecified vectors, aka Ref ID 31116.
Paloaltonetworks Pan-os 4.0.0
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 4.0.2
Paloaltonetworks Pan-os 4.0.4
Paloaltonetworks Pan-os 4.0.1
Paloaltonetworks Pan-os 4.0.3
NA
CVE-2012-6592
Palo Alto Networks PAN-OS prior to 3.1.10 and 4.0.x prior to 4.0.5 allows remote malicious users to execute arbitrary commands via unspecified vectors, aka Ref ID 31091.
Paloaltonetworks Pan-os 4.0.2
Paloaltonetworks Pan-os 4.0.3
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 4.0.4
Paloaltonetworks Pan-os 4.0.1
Paloaltonetworks Pan-os 4.0.0
NA
CVE-2012-6593
Palo Alto Networks PAN-OS prior to 3.1.10 and 4.0.x prior to 4.0.4 allows remote malicious users to execute arbitrary commands via unspecified vectors, aka Ref ID 30088.
Paloaltonetworks Pan-os 4.0.0
Paloaltonetworks Pan-os 4.0.1
Paloaltonetworks Pan-os 4.0.3
Paloaltonetworks Pan-os 4.0.2
Paloaltonetworks Pan-os
NA
CVE-2012-6602
The device-management command-line interface in Palo Alto Networks PAN-OS prior to 3.1.10 and 4.0.x prior to 4.0.4 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Ref ID 30122.
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 4.0.0
Paloaltonetworks Pan-os 4.0.2
Paloaltonetworks Pan-os 4.0.1
Paloaltonetworks Pan-os 4.0.3
7.8
CVSSv3
CVE-2020-2049
A local privilege escalation vulnerability exists in Palo Alto Networks Cortex XDR Agent on the Windows platform that allows an authenticated local Windows user to execute programs with SYSTEM privileges. This requires the user to have the privilege to create files in the Windows...
Paloaltonetworks Cortex Xdr Agent 7.1
Paloaltonetworks Cortex Xdr Agent
Paloaltonetworks Cortex Xdr Agent 7.2
4.3
CVSSv3
CVE-2022-0027
An improper authorization vulnerability in Palo Alto Network Cortex XSOAR software enables authenticated users in non-Read-Only groups to generate an email report that contains summary information about all incidents in the Cortex XSOAR instance, including incidents to which the ...
Paloaltonetworks Cortex Xsoar 6.2.0
Paloaltonetworks Cortex Xsoar 6.1.0
Paloaltonetworks Cortex Xsoar
Paloaltonetworks Cortex Xsoar 6.5.0
7.8
CVSSv3
CVE-2021-3042
A local privilege escalation (PE) vulnerability exists in the Palo Alto Networks Cortex XDR agent on Windows platforms that enables an authenticated local Windows user to execute programs with SYSTEM privileges. Exploiting this vulnerability requires the user to have file creatio...
Paloaltonetworks Cortex Xdr Agent 6.1
Paloaltonetworks Cortex Xdr Agent 7.2
Paloaltonetworks Cortex Xdr Agent 7.3
6.7
CVSSv3
CVE-2022-0031
A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system allows a local attacker with shell access to the engine to execute programs with elevated privileges.
Paloaltonetworks Cortex Xsoar 6.8.0
Paloaltonetworks Cortex Xsoar 6.6.0
Paloaltonetworks Cortex Xsoar 6.5.0
5.1
CVSSv3
CVE-2021-3034
An information exposure through log file vulnerability exists in Cortex XSOAR software where the secrets configured for the SAML single sign-on (SSO) integration can be logged to the '/var/log/demisto/' server logs when testing the integration during setup. This logged ...
Paloaltonetworks Cortex Xsoar 5.5.0
Paloaltonetworks Cortex Xsoar 6.0.1
Paloaltonetworks Cortex Xsoar 6.0.2
Paloaltonetworks Cortex Xsoar 6.1.0
1 Github repository
8.1
CVSSv3
CVE-2021-3051
An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR SAML authentication that enables an unauthenticated network-based attacker with specific knowledge of the Cortex XSOAR instance to access protected resources and perform unauthorized actions ...
Paloaltonetworks Cortex Xsoar 5.5.0
Paloaltonetworks Cortex Xsoar 6.0.2
Paloaltonetworks Cortex Xsoar 6.1.0
Paloaltonetworks Cortex Xsoar 6.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »