Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Cloud NGFW — Vulnerabilities & Security Advisories 54

All 54 CVE vulnerabilities found in Cloud NGFW, with AI-generated Chinese analysis, references, and POCs.

This page catalogs Common Weakness Enumerations associated with Palo Alto Networks Cloud NGFW, categorized by specific vulnerability tags. It aggregates security defects found in the cloud-native next-generation firewall solution, providing a consolidated view of known issues that impact system integrity, availability, and confidentiality. The collection includes vulnerabilities reported from January 2020 through the current quarter, ensuring that users have access to both historical data and recent findings relevant to the product's evolution. By reviewing this aggregated data, you can track vendor advisories and monitor the patching lifecycle for critical releases. You can also understand the broader context of a specific weakness class, such as buffer overflows or improper input validation, and see how they manifest within this specific cloud infrastructure. Furthermore, the page allows you to look up a product's vulnerability history, offering insight into recurring problem areas or security regressions. This resource is designed to support security analysts, DevOps engineers, and compliance officers in assessing risk profiles and prioritizing remediation efforts. The content is structured to facilitate quick searches by CVE ID, severity level, or component module. It serves as a neutral reference point for understanding the security posture of Cloud NGFW over time, without offering remediation advice or operational recommendations. This approach ensures that the information remains factual and directly useful for technical reviews and audit preparations.

Vendor: Palo Alto Networks

CVE IDTitleCVSSSeverityPublished
CVE-2026-0273 PAN-OS: Authenticated Admin Command Injection Vulnerability via CLI or Web UI CWE-78--2026-06-10
CVE-2026-0272 PAN-OS: Privilege Escalation (PE) Vulnerability in the Command Line Interface (CLI) CWE-862--2026-06-10
CVE-2026-0269 PAN-OS: Denial of Service (DoS) in Tunnel Traffic Processing CWE-754--2026-06-10
CVE-2026-0266 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface CWE-79--2026-06-10
CVE-2026-0256 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface CWE-79--2026-05-13
CVE-2026-0257 PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities CWE-565--2026-05-13
CVE-2026-0258 PAN-OS: Server-Side Request Forgery (SSRF) in IKEv2 Certificate URL Fetching CWE-918--2026-05-13
CVE-2026-0261 PAN-OS: Authenticated Admin Command Injection Vulnerability CWE-78--2026-05-13
CVE-2026-0262 PAN-OS: Denial of Service Vulnerabilities in Network Traffic Parsing CWE-754--2026-05-13
CVE-2026-0263 PAN-OS: Remote Code Execution (RCE) in IKEv2 Processing CWE-787--2026-05-13
CVE-2026-0264 PAN-OS: Heap-Based Buffer Overflow in DNS Proxy and DNS Server Allows Unauthenticated Remote Code Execution CWE-122--2026-05-13
CVE-2026-0265 PAN-OS: Authentication Bypass with Cloud Authentication Service (CAS) enabled CWE-347--2026-05-13
CVE-2026-0300 PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal CWE-787 9.8AICriticalAI2026-05-06
CVE-2026-0229 PAN-OS: Denial of Service in Advanced DNS Security Feature CWE-754 7.5AIHighAI2026-02-11
CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate CWE-295 7.5AIHighAI2026-02-11
CVE-2026-0227 PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal CWE-754 7.5AIHighAI2026-01-15
CVE-2025-4619 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Packets CWE-754 7.5 -2025-11-13
CVE-2025-4615 PAN-OS: Improper Neutralization of Input in the Management Web Interface CWE-83 7.2AIHighAI2025-10-09
CVE-2025-4614 PAN-OS: Session Token Disclosure Vulnerability CWE-497 4.9AIMediumAI2025-10-09
CVE-2025-2182 PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK) CWE-312 6.5AIMediumAI2025-08-13
CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability CWE-497 5.3AIMediumAI2025-06-13
CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI CWE-78 7.2AIHighAI2025-06-12
CVE-2025-4231 PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface CWE-77 7.2AIHighAI2025-06-12
CVE-2025-0136 PAN-OS: Unencrypted Data Transfer when using AES-128-CCM on Intel-based hardware devices CWE-319 7.5AIHighAI2025-05-14
CVE-2025-0137 PAN-OS: Improper Neutralization of Input in the Management Web Interface CWE-83 7.2AIHighAI2025-05-14
CVE-2025-0133 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal CWE-79 6.1AIMediumAI2025-05-14
CVE-2025-0130 PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted Packets CWE-754 7.5AIHighAI2025-05-14
CVE-2025-0123 PAN-OS: Information Disclosure Vulnerability in HTTP/2 Packet Captures CWE-312 4.9AIMediumAI2025-04-11
CVE-2025-0128 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet CWE-754 7.5AIHighAI2025-04-11
CVE-2025-0127 PAN-OS: Authenticated Admin Command Injection Vulnerability in PAN-OS VM-Series CWE-78 7.2AIHighAI2025-04-11

All 54 known CVE vulnerabilities affecting Cloud NGFW with full Chinese analysis, references, and POCs where available.