Paloaltonetworks

Pan-os

226 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2024-8688

  • EPSS 0.02%
  • Veröffentlicht 11.09.2024 17:15:14
  • Zuletzt bearbeitet 03.10.2024 00:19:32

An improper neutralization of matching symbols vulnerability in the Palo Alto Networks PAN-OS command line interface (CLI) enables authenticated administrators (including read-only administrators) with access to the CLI to to read arbitrary files on ...

7.1

CVE-2024-8691

  • EPSS 0.44%
  • Veröffentlicht 11.09.2024 17:15:14
  • Zuletzt bearbeitet 01.11.2024 14:26:46

A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a malicious authenticated GlobalProtect user to impersonate another GlobalProtect user. Active GlobalProtect users impersonated by an attacker who is exploiting...

4.4

CVE-2024-5916

  • EPSS 0.07%
  • Veröffentlicht 14.08.2024 17:15:18
  • Zuletzt bearbeitet 20.08.2024 19:30:11

An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local system administrator to unintentionally disclose secrets, passwords, and tokens of external systems. A read-only administrator who has access to the config lo...

7

CVE-2024-5911

  • EPSS 0.16%
  • Veröffentlicht 10.07.2024 19:15:11
  • Zuletzt bearbeitet 21.11.2024 09:48:34

An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and crash the Panorama. Repeated attacks eventually cause th...

6.8

CVE-2024-5913

  • EPSS 0.09%
  • Veröffentlicht 10.07.2024 19:15:11
  • Zuletzt bearbeitet 24.01.2025 16:00:42

An improper input validation vulnerability in Palo Alto Networks PAN-OS software enables an attacker with the ability to tamper with the physical file system to elevate privileges.

10

CVE-2024-3400

Warnung Exploit
  • EPSS 94.3%
  • Veröffentlicht 12.04.2024 08:15:06
  • Zuletzt bearbeitet 29.11.2024 16:47:54

A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to exe...

9.1

CVE-2024-3383

  • EPSS 0.25%
  • Veröffentlicht 10.04.2024 17:15:57
  • Zuletzt bearbeitet 24.01.2025 15:29:26

A vulnerability in how Palo Alto Networks PAN-OS software processes data received from Cloud Identity Engine (CIE) agents enables modification of User-ID groups. This impacts user access to network resources where users may be inappropriately denied ...

7.5

CVE-2024-3384

  • EPSS 0.73%
  • Veröffentlicht 10.04.2024 17:15:57
  • Zuletzt bearbeitet 24.01.2025 15:54:56

A vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to reboot PAN-OS firewalls when receiving Windows New Technology LAN Manager (NTLM) packets from Windows servers. Repeated attacks eventually cause the firewall to enter ...

7.5

CVE-2024-3385

  • EPSS 2.12%
  • Veröffentlicht 10.04.2024 17:15:57
  • Zuletzt bearbeitet 24.01.2025 15:55:48

A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote attacker to reboot hardware-based firewalls. Repeated attacks eventually cause the firewall to enter maintenance mode, which requires manual intervention to bring th...

5.3

CVE-2024-3386

  • EPSS 0.24%
  • Veröffentlicht 10.04.2024 17:15:57
  • Zuletzt bearbeitet 24.01.2025 15:58:52

An incorrect string comparison vulnerability in Palo Alto Networks PAN-OS software prevents Predefined Decryption Exclusions from functioning as intended. This can cause traffic destined for domains that are not specified in Predefined Decryption Exc...