Paloaltonetworks

Pan-os

233 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-2551

  • EPSS 0.31%
  • Veröffentlicht 14.11.2024 10:15:04
  • Zuletzt bearbeitet 24.01.2025 16:03:41

A null pointer dereference vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to stop a core system service on the firewall by sending a crafted packet through the data plane that causes a denial of service (DoS) ...

6

CVE-2024-2552

  • EPSS 0.03%
  • Veröffentlicht 14.11.2024 10:15:04
  • Zuletzt bearbeitet 24.01.2025 16:04:14

A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions in the management plane and delete files on the firewall.

4.7

CVE-2024-9471

  • EPSS 0.28%
  • Veröffentlicht 09.10.2024 17:15:21
  • Zuletzt bearbeitet 15.10.2024 16:55:45

A privilege escalation (PE) vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated PAN-OS administrator with restricted privileges to use a compromised XML API key to perform actions as a higher privileged PAN-OS ...

7.5

CVE-2024-9468

  • EPSS 0.62%
  • Veröffentlicht 09.10.2024 17:15:20
  • Zuletzt bearbeitet 01.12.2025 17:19:55

A memory corruption vulnerability in Palo Alto Networks PAN-OS software allows an unauthenticated attacker to crash PAN-OS due to a crafted packet through the data plane, resulting in a denial of service (DoS) condition. Repeated attempts to trigger ...

7.2

CVE-2024-8686

  • EPSS 0.28%
  • Veröffentlicht 11.09.2024 17:15:14
  • Zuletzt bearbeitet 03.10.2024 01:35:10

A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as root on the firewall.

7.1

CVE-2024-8687

  • EPSS 0.38%
  • Veröffentlicht 11.09.2024 17:15:14
  • Zuletzt bearbeitet 03.10.2024 00:26:56

An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After the passwo...

4.4

CVE-2024-8688

  • EPSS 0.17%
  • Veröffentlicht 11.09.2024 17:15:14
  • Zuletzt bearbeitet 03.10.2024 00:19:32

An improper neutralization of matching symbols vulnerability in the Palo Alto Networks PAN-OS command line interface (CLI) enables authenticated administrators (including read-only administrators) with access to the CLI to to read arbitrary files on ...

7.1

CVE-2024-8691

  • EPSS 0.26%
  • Veröffentlicht 11.09.2024 17:15:14
  • Zuletzt bearbeitet 01.11.2024 14:26:46

A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a malicious authenticated GlobalProtect user to impersonate another GlobalProtect user. Active GlobalProtect users impersonated by an attacker who is exploiting...

4.4

CVE-2024-5916

  • EPSS 0.08%
  • Veröffentlicht 14.08.2024 17:15:18
  • Zuletzt bearbeitet 20.08.2024 19:30:11

An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local system administrator to unintentionally disclose secrets, passwords, and tokens of external systems. A read-only administrator who has access to the config lo...

4.9

CVE-2024-5911

  • EPSS 0.42%
  • Veröffentlicht 10.07.2024 19:15:11
  • Zuletzt bearbeitet 30.01.2026 21:11:32

An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and crash the Panorama. Repeated attacks eventually cause th...