Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
palo alto networks vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-15016
An SQL injection vulnerability exists in the management interface of Zingbox Inspector versions 1.288 and previous versions, that allows for unsanitized data provided by an authenticated user to be passed from the web UI into the database.
Zingbox Inspector
9.8
CVSSv3
CVE-2019-15019
A security vulnerability exists in the Zingbox Inspector versions 1.294 and previous versions, that could allow an malicious user to supply an invalid software update image to the Zingbox Inspector.
Zingbox Inspector
9.8
CVSSv3
CVE-2019-15020
A security vulnerability exists in the Zingbox Inspector versions 1.293 and previous versions, that could allow an malicious user to supply an invalid software update image to the Zingbox Inspector that could result in command injection.
Zingbox Inspector
7.5
CVSSv3
CVE-2019-15022
A security vulnerability exists in Zingbox Inspector versions 1.294 and previous versions, that allows for the Inspector to be susceptible to ARP spoofing.
Zingbox Inspector
NA
CVE-2018-07396
PAN-SA-2018-0015 OpenSSL Vulnerabilities in PAN-OS
8.8
CVSSv3
CVE-2021-3050
An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 9.0 version 9.0.10 through PAN-OS 9.0.14; PAN-OS 9.1 version 9.1.4 throu...
Paloaltonetworks Pan-os
5.4
CVSSv3
CVE-2021-3052
A reflected cross-site scripting (XSS) vulnerability in the Palo Alto Network PAN-OS web interface enables an authenticated network-based malicious user to mislead another authenticated PAN-OS administrator to click on a specially crafted link that performs arbitrary actions in t...
Paloaltonetworks Pan-os
7.5
CVSSv3
CVE-2021-3053
An improper handling of exceptional conditions vulnerability exists in the Palo Alto Networks PAN-OS dataplane that enables an unauthenticated network-based malicious user to send specifically crafted traffic through the firewall that causes the service to crash. Repeated attempt...
Paloaltonetworks Pan-os
6.6
CVSSv3
CVE-2021-3054
A time-of-check to time-of-use (TOCTOU) race condition vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permission to upload plugins to execute arbitrary code with root user privileges. This issue impacts: PAN-OS 8.1 version...
Paloaltonetworks Pan-os
6.3
CVSSv3
CVE-2023-36671
An issue exists in the Clario VPN client up to and including 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel even if this traffic is not genera...
Clario Vpn
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »