Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

PAN-OS — Vulnerabilities & Security Advisories 122

All 122 CVE vulnerabilities found in PAN-OS, with AI-generated Chinese analysis, references, and POCs.

Vendor: Palo Alto Networks

CVE IDTitleCVSSSeverityPublished
CVE-2021-3037 PAN-OS: Secrets for scheduled configuration exports are logged in system logs CWE-534 2.3 Low2021-04-20
CVE-2021-3036 PAN-OS: Administrator secrets are logged in web server logs when using the PAN-OS XML API incorrectly CWE-532 4.4 Medium2021-04-20
CVE-2021-3032 PAN-OS: Configuration secrets for log forwarding may be logged in system logs CWE-532 4.4 Medium2021-01-13
CVE-2021-3031 PAN-OS: Information exposure in Ethernet data frame construction (Etherleak) CWE-200 4.3 Medium2021-01-13
CVE-2020-2050 PAN-OS: Authentication bypass vulnerability in GlobalProtect SSL VPN client certificate verification CWE-285 8.2 High2020-11-12
CVE-2020-2048 PAN-OS: System proxy passwords may be logged in clear text while viewing system state CWE-532 3.3 Low2020-11-12
CVE-2020-2022 PAN-OS: Panorama session disclosure during context switch into managed device CWE-200 7.5 High2020-11-12
CVE-2020-1999 PAN-OS: Threat signatures are evaded by specifically crafted packets CWE-754 5.3 Medium2020-11-12
CVE-2020-2000 PAN-OS: OS command injection and memory corruption vulnerability CWE-20 7.2 High2020-11-12
CVE-2020-2043 PAN-OS: Passwords may be logged in clear text when using after-change-detail custom syslog field for config logs CWE-532 3.3 Low2020-09-09
CVE-2020-2044 PAN-OS: Passwords may be logged in clear text while storing operational command (op command) history CWE-532 3.3 Low2020-09-09
CVE-2020-2042 PAN-OS: Buffer overflow in the management web interface CWE-121 7.2 High2020-09-09
CVE-2020-2040 PAN-OS: Buffer overflow when Captive Portal or Multi-Factor Authentication (MFA) is enabled CWE-120 9.8 Critical2020-09-09
CVE-2020-2041 PAN-OS: Management web interface denial-of-service (DoS) CWE-16 7.5 High2020-09-09
CVE-2020-2038 PAN-OS: OS command injection vulnerability in the management web interface CWE-78 7.2 High2020-09-09
CVE-2020-2039 PAN-OS: Management web interface denial-of-service (DoS) through unauthenticated file upload CWE-400 5.3 Medium2020-09-09
CVE-2020-2036 PAN-OS: Reflected Cross-Site Scripting (XSS) vulnerability in management web interface CWE-79 8.8 High2020-09-09
CVE-2020-2037 PAN-OS: OS command injection vulnerability in the management web interface CWE-78 7.2 High2020-09-09
CVE-2020-2035 PAN-OS: URL filtering policy is not enforced on TLS handshakes for decrypted HTTPS sessions CWE-20 3.0 Low2020-08-12
CVE-2020-2034 PAN-OS: OS command injection vulnerability in GlobalProtect portal CWE-78 8.1 High2020-07-08
CVE-2020-2030 PAN-OS: OS command injection vulnerability in the management interface CWE-78 7.2 High2020-07-08
CVE-2020-2031 PAN-OS: Integer underflow in the management interface CWE-191 4.9 Medium2020-07-08
CVE-2020-1982 PAN-OS: TLS 1.0 usage for certain communications with Palo Alto Networks cloud delivered services CWE-326 4.8 Medium2020-07-08
CVE-2020-2021 PAN-OS: Authentication Bypass in SAML Authentication CWE-347 10.0 Critical2020-06-29
CVE-2020-2029 PAN-OS: OS command injection vulnerability in management interface certificate generator CWE-78 7.2 High2020-06-10
CVE-2020-2028 PAN-OS: OS command injection vulnerability in FIPS-CC mode certificate verification CWE-78 7.2 High2020-06-10
CVE-2020-2027 PAN-OS: Buffer overflow in authd authentication response CWE-121 7.2 High2020-06-10
CVE-2020-2011 PAN-OS: Panorama registration denial of service CWE-20 7.5 High2020-05-13
CVE-2020-2012 PAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak CWE-611 7.5 High2020-05-13
CVE-2020-2013 PAN-OS: Panorama context switch session cookie disclosure CWE-319 8.3 High2020-05-13

All 122 known CVE vulnerabilities affecting PAN-OS with full Chinese analysis, references, and POCs where available.