Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
palo alto networks vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-34362
In Progress MOVEit Transfer prior to 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1), a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an unauthenticated malicious user to gain a...
Progress Moveit Cloud
Progress Moveit Transfer
18 Github repositories
11 Articles
NA
CVE-2022-45199
Pillow prior to 9.3.0 allows denial of service via SAMPLESPERPIXEL.
Python Pillow
383
VMScore
CVE-2021-3063
An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based malicious user to send specifically crafted traffic to a GlobalProtect interface that causes the ser...
Paloaltonetworks Pan-os
187
VMScore
CVE-2019-15704
A clear text storage of sensitive information vulnerability in FortiClient for Mac may allow a local malicious user to read sensitive information logged in the console window when the user connects to an SSL VPN Gateway.
Fortinet Forticlient
Fortinet Forticlient 6.2.0
445
VMScore
CVE-2019-15714
cli/lib/main.js in Entropic prior to 2019-06-13 does not reject / and \ in command names, which might allow a directory traversal attack in unusual situations.
Entropic Project Entropic
169
VMScore
CVE-2019-1573
GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and previous versions for macOS may allow a local authenticated attacker who has compromised the end-user account and gained the ability to inspect memory, to access authentication and/or session tokens and repl...
Paloaltonetworks Globalprotect
312
VMScore
CVE-2019-1574
Cross-site scripting (XSS) vulnerability in Palo Alto Networks Expedition Migration tool 1.1.12 and previous versions may allow an authenticated malicious user to run arbitrary JavaScript or HTML in the Devices View.
Paloaltonetworks Expedition Migration Tool
578
VMScore
CVE-2019-1582
Memory corruption in PAN-OS 8.1.9 and previous versions, and PAN-OS 9.0.3 and previous versions will allow an administrative user to cause arbitrary memory corruption by rekeying the current client interactive session.
Paloaltonetworks Pan-os
383
VMScore
CVE-2021-3046
An improper authentication vulnerability exists in Palo Alto Networks PAN-OS software that enables a SAML authenticated malicious user to impersonate any other user in the GlobalProtect Portal and GlobalProtect Gateway when they are configured to use SAML authentication. This iss...
Paloaltonetworks Pan-os
801
VMScore
CVE-2021-3050
An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 9.0 version 9.0.10 through PAN-OS 9.0.14; PAN-OS 9.1 version 9.1.4 throu...
Paloaltonetworks Pan-os
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »