Paloaltonetworks

Pan-os

226 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.7

CVE-2025-0128

Media report
  • EPSS 0.07%
  • Published 11.04.2025 02:15:19
  • Last modified 11.04.2025 15:39:52

A denial-of-service (DoS) vulnerability in the Simple Certificate Enrollment Protocol (SCEP) authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted pack...

3.8

CVE-2025-0124

Media report
  • EPSS 0.08%
  • Published 11.04.2025 02:15:18
  • Last modified 02.10.2025 15:16:35

An authenticated file deletion vulnerability in the Palo Alto Networks PAN-OS® software enables an authenticated attacker with network access to the management web interface to delete certain files as the “nobody” user; this includes limited logs and...

6.9

CVE-2025-0125

Media report
  • EPSS 0.05%
  • Published 11.04.2025 02:15:18
  • Last modified 11.04.2025 15:39:52

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables a malicious authenticated read-write administrator to impersonate another legitimate authenticated PAN-OS administrator....

8.3

CVE-2025-0126

Media report
  • EPSS 0.06%
  • Published 11.04.2025 02:15:18
  • Last modified 11.04.2025 15:39:52

When configured using SAML, a session fixation vulnerability in the GlobalProtect™ login enables an attacker to impersonate a legitimate authorized user and perform actions as that GlobalProtect user. This requires the legitimate user to first click ...

6.8

CVE-2025-0116

  • EPSS 0.05%
  • Published 12.03.2025 18:34:38
  • Last modified 18.03.2025 00:15:12

A Denial of Service (DoS) vulnerability in Palo Alto Networks PAN-OS software causes the firewall to unexpectedly reboot when processing a specially crafted LLDP frame sent by an unauthenticated adjacent attacker. Repeated attempts to initiate this c...

6.8

CVE-2025-0115

  • EPSS 0.03%
  • Published 12.03.2025 18:30:13
  • Last modified 15.03.2025 00:15:11

A vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated admin on the PAN-OS CLI to read arbitrary files. The attacker must have network access to the management interface (web, SSH, console, or telnet) and successfully aut...

8.2

CVE-2025-0114

  • EPSS 0.05%
  • Published 12.03.2025 18:20:05
  • Last modified 12.03.2025 19:15:37

A Denial of Service (DoS) vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software enables an unauthenticated attacker to render the service unavailable by sending a large number of specially crafted packets over a period of t...

9.1

CVE-2025-0108

Warning Media report Exploit
  • EPSS 94.01%
  • Published 12.02.2025 21:15:16
  • Last modified 27.06.2025 20:39:59

An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to bypass the authentication otherwise required by the PAN-OS management web interface and invo...

6.9

CVE-2025-0109

  • EPSS 0.39%
  • Published 12.02.2025 21:15:16
  • Last modified 12.02.2025 21:15:16

An unauthenticated file deletion vulnerability in the Palo Alto Networks PAN-OS management web interface enables an unauthenticated attacker with network access to the management web interface to delete certain files as the “nobody” user; this includ...

6.5

CVE-2025-0111

Warning
  • EPSS 4.42%
  • Published 12.02.2025 21:15:16
  • Last modified 21.02.2025 14:50:23

An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker with network access to the management web interface to read files on the PAN-OS filesystem that are readable by the “nobody” user. Y...