Paloaltonetworks

Pan-os

229 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2016-9149

  • EPSS 0.25%
  • Veröffentlicht 19.11.2016 06:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Addresses Object parser in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 mishandles single quote characters, which allows remote authenticated u...

7.2

CVE-2016-5195

Warnung Exploit
  • EPSS 94.18%
  • Veröffentlicht 10.11.2016 21:59:00
  • Zuletzt bearbeitet 04.11.2025 16:15:37

Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in Oc...

7.8

CVE-2016-1712

  • EPSS 0.05%
  • Veröffentlicht 02.08.2016 16:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Palo Alto Networks PAN-OS before 5.0.19, 5.1.x before 5.1.12, 6.0.x before 6.0.14, 6.1.x before 6.1.12, and 7.0.x before 7.0.8 might allow local users to gain privileges by leveraging improper sanitization of the root_reboot local invocation.

5.4

CVE-2016-2219

  • EPSS 0.16%
  • Veröffentlicht 12.07.2016 19:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the management interface in Palo Alto Networks PAN-OS 7.x before 7.0.8 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

8.8

CVE-2016-4971

Exploit
  • EPSS 75.59%
  • Veröffentlicht 30.06.2016 17:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource.

7.5

CVE-2016-3656

  • EPSS 0.62%
  • Veröffentlicht 12.04.2016 17:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The GlobalProtect Portal in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote attackers to cause a denial of service (service crash) via a crafted request.

10

CVE-2016-3657

  • EPSS 3.03%
  • Veröffentlicht 12.04.2016 17:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in the GlobalProtect Portal in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5 allows remote attackers to cause a denial of service (device crash) or possibly execute arbitrary...

10

CVE-2016-3655

  • EPSS 1.31%
  • Veröffentlicht 12.04.2016 17:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The management web interface in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5 allows remote attackers to execute arbitrary OS commands via an unspecified API call.

9

CVE-2016-3654

  • EPSS 0.52%
  • Veröffentlicht 12.04.2016 17:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The device management command line interface (CLI) in Palo Alto Networks PAN-OS before 5.0.18, 5.1.x before 5.1.11, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote authenticated administrators to execute arbitrary OS ...

4

CVE-2015-4162

  • EPSS 0.32%
  • Veröffentlicht 02.06.2015 14:59:21
  • Zuletzt bearbeitet 12.04.2025 10:46:40

XML external entity (XXE) vulnerability in the management interface in PAN-OS before 5.0.16, 6.x before 6.0.8, and 6.1.x before 6.1.4 allows remote authenticated administrators to obtain sensitive information via crafted XML data.