Palo Alto Networks PAN-OS prior to 7.0.15 has XSS in the GlobalProtect external interface via crafted request parameters, aka PAN-SA-2017-0011 and PAN-70674.
paloaltonetworks pan-os
Vulmon