Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
palo alto networks vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2019-15704
A clear text storage of sensitive information vulnerability in FortiClient for Mac may allow a local malicious user to read sensitive information logged in the console window when the user connects to an SSL VPN Gateway.
Fortinet Forticlient
Fortinet Forticlient 6.2.0
312
VMScore
CVE-2019-1571
The Expedition Migration tool 1.1.8 and previous versions may allow an authenticated malicious user to run arbitrary JavaScript or HTML in the RADIUS server settings.
Paloaltonetworks Expedition
445
VMScore
CVE-2019-15714
cli/lib/main.js in Entropic prior to 2019-06-13 does not reject / and \ in command names, which might allow a directory traversal attack in unusual situations.
Entropic Project Entropic
578
VMScore
CVE-2019-1575
Information disclosure in PAN-OS 7.1.23 and previous versions, PAN-OS 8.0.18 and previous versions, PAN-OS 8.1.8-h4 and previous versions, and PAN-OS 9.0.2 and previous versions may allow for an authenticated user with read-only privileges to extract the API key of the device and...
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 8.1.8
383
VMScore
CVE-2019-1578
Cross-site scripting vulnerability in Palo Alto Networks MineMeld version 0.9.60 and previous versions may allow a remote attacker able to convince an authenticated MineMeld admin to type malicious input in the MineMeld UI could execute arbitrary JavaScript code in the admin&rsqu...
Paloaltonetworks Minemeld
605
VMScore
CVE-2019-1579
Remote Code Execution in PAN-OS 7.1.18 and previous versions, PAN-OS 8.0.11-h1 and previous versions, and PAN-OS 8.1.2 and previous versions with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauthenticated remote malicious user to execute arbitrar...
Paloaltonetworks Pan-os
1 Github repository
1 Article
890
VMScore
CVE-2019-1580
Memory corruption in PAN-OS 7.1.24 and previous versions, PAN-OS 8.0.19 and previous versions, PAN-OS 8.1.9 and previous versions, and PAN-OS 9.0.3 and previous versions will allow a remote, unauthenticated user to craft a message to Secure Shell Daemon (SSHD) and corrupt arbitra...
Paloaltonetworks Pan-os
NA
CVE-2023-3280
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to disable the agent.
Paloaltonetworks Cortex Xdr Agent
Paloaltonetworks Cortex Xdr Agent 7.5.102
NA
CVE-2023-3281
CVE-2023-3281 Cortex XSOAR: Cleartext Exposure of Client Certificate Key in Kafka v3 Integration
NA
CVE-2023-3282
A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system enables a local malicious user to execute programs with elevated privileges if the attacker has shell access to the engine.
Paloaltonetworks Cortex Xsoar
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »