Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Palo Alto Networks — Vulnerabilities & Security Advisories 280

Browse all 280 CVE security advisories affecting Palo Alto Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Palo Alto Networks:PAN-OSCloud NGFWGlobalProtect AppCortex XDR AgentCortex XSOARCortex XDR Broker VMExpeditionPrisma Cloud ComputeGlobal Protect AgentPrisma BrowserTrapsCheckov by Prisma CloudAutonomous Digital Experience ManagerPrisma Access BrowserPalo Alto Networks PAN-OSBridgecrew CheckovPalo Alto Networks ExpeditionPrisma Cloud Compute EditionUser-ID Credential AgentPrisma SD-WANCortex XDR Microsoft 365 Defender PackPAN-OS OpenConfig PluginCortex XSOAR Microsoft Teams MarketplaceActiveMQ Content PackCortex XSOAR CommonScriptsVM-Series PluginGlobalProtectGlobalProtect Agent for Linux and OSXGlobalProtect Agent for WindowsMineMeld
CVE IDTitleCVSSSeverityPublished
CVE-2024-0009 PAN-OS: Improper IP Address Verification in GlobalProtect Gateway — PAN-OSCWE-940 6.3 Medium2024-02-14
CVE-2024-0008 PAN-OS: Insufficient Session Expiration Vulnerability in the Web Interface — PAN-OSCWE-613 6.6 Medium2024-02-14
CVE-2024-0007 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface — PAN-OSCWE-79 6.8 Medium2024-02-14
CVE-2023-6793 PAN-OS: XML API Keys Revoked by Read-Only PAN-OS Administrator — PAN-OSCWE-269 2.7 Low2023-12-13
CVE-2023-6791 PAN-OS: Plaintext Disclosure of External System Integration Credentials — PAN-OSCWE-701 4.9 Medium2023-12-13
CVE-2023-6789 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface — PAN-OSCWE-79 4.3 Medium2023-12-13
CVE-2023-6795 PAN-OS: OS Command Injection Vulnerability in the Web Interface — PAN-OSCWE-78 5.5 Medium2023-12-13
CVE-2023-6794 PAN-OS: File Upload Vulnerability in the Web Interface — PAN-OSCWE-434 5.5 Medium2023-12-13
CVE-2023-6792 PAN-OS: OS Command Injection Vulnerability in the XML API — PAN-OSCWE-88 5.5 Medium2023-12-13
CVE-2023-6790 PAN-OS: DOM-Based Cross-Site Scripting (XSS) Vulnerability in the Web Interface — PAN-OSCWE-79 8.8 High2023-12-13
CVE-2023-3282 Cortex XSOAR: Local Privilege Escalation (PE) Vulnerability in Cortex XSOAR Engine — Cortex XSOARCWE-732 6.4 Medium2023-11-08
CVE-2023-3280 Cortex XDR Agent: Local Windows User Can Disable the Agent — Cortex XDR AgentCWE-755 5.5 Medium2023-09-13
CVE-2023-38046 PAN-OS: Read System Files and Resources During Configuration Commit — PAN-OSCWE-610 5.5 Medium2023-07-12
CVE-2023-0009 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability — GlobalProtect AppCWE-807 7.8 High2023-06-14
CVE-2023-0010 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication — PAN-OSCWE-79 5.4 Medium2023-06-14
CVE-2023-0008 PAN-OS: Local File Disclosure Vulnerability in the PAN-OS Web Interface — PAN-OSCWE-73 4.4 Medium2023-05-10
CVE-2023-0007 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface — PAN-OSCWE-80 6.5 Medium2023-05-10
CVE-2023-0006 GlobalProtect App: Local File Deletion Vulnerability — GlobalProtect appCWE-367 6.3 Medium2023-04-12
CVE-2023-0005 PAN-OS: Exposure of Sensitive Information Vulnerability — PAN-OSCWE-497 4.1 Medium2023-04-12
CVE-2023-0004 PAN-OS: Local File Deletion Vulnerability — PAN-OSCWE-703 6.5 Medium2023-04-12
CVE-2023-0003 Cortex XSOAR: Local File Disclosure Vulnerability in the Cortex XSOAR Server — Cortex XSOARCWE-73 6.5 Medium2023-02-08
CVE-2023-0002 Cortex XDR Agent: Product Disruption by Local Windows User — Cortex XDR agentCWE-693 5.5 Medium2023-02-08
CVE-2023-0001 Cortex XDR Agent: Cleartext Exposure of Agent Admin Password — Cortex XDR agentCWE-319 6.0 Medium2023-02-08
CVE-2022-0031 Cortex XSOAR: Local Privilege Escalation (PE) Vulnerability in Cortex XSOAR Engine — Cortex XSOARCWE-345 6.7 Medium2022-11-09
CVE-2022-0030 PAN-OS: Authentication Bypass in Web Interface — PAN-OSCWE-290 8.1 High2022-10-12
CVE-2022-0029 Cortex XDR Agent: Improper Link Resolution Vulnerability When Generating a Tech Support File — Cortex XDR AgentCWE-59 5.5 Medium2022-09-14
CVE-2022-0028 PAN-OS: Reflected Amplification Denial-of-Service (DoS) Vulnerability in URL Filtering — Cloud NGFWCWE-406 8.6 High2022-08-10
CVE-2022-0027 Cortex XSOAR: Incorrect Authorization Vulnerability When Generating Reports — Cortex XSOARCWE-285 4.3 Medium2022-05-11
CVE-2022-0026 Cortex XDR Agent: Unintended Program Execution Leads to Local Privilege Escalation (PE) Vulnerability — Cortex XDR AgentCWE-282 6.7 Medium2022-05-11
CVE-2022-0025 Cortex XDR Agent: An Uncontrolled Search Path Element Leads to Local Privilege Escalation (PE) Vulnerability — Cortex XDR AgentCWE-427 6.7 Medium2022-05-11

This page lists every published CVE security advisory associated with Palo Alto Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.