Cloud NGFW — Vulnerabilities & Security Advisories 42

All 42 CVE vulnerabilities found in Cloud NGFW, with AI-generated Chinese analysis, references, and POCs.

Vendor: Palo Alto Networks

CVE ID	Title	CVSS	Severity	Published
CVE-2024-9474	PAN-OS: Privilege Escalation (PE) Vulnerability in the Web Management Interface CWE-78	7.2^AI	High^AI	2024-11-18
CVE-2024-0012	PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) CWE-306	9.8^AI	Critical^AI	2024-11-18
CVE-2024-2550	PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway Using a Specially Crafted Packet CWE-476	7.5^AI	High^AI	2024-11-14
CVE-2024-5920	PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in PAN-OS Enables Impersonation of a Legitimate Administrator CWE-79	4.8^AI	Medium^AI	2024-11-14
CVE-2024-5917	PAN-OS: Server-Side Request Forgery in WildFire CWE-918	5.3^AI	Medium^AI	2024-11-14
CVE-2024-2552	PAN-OS: Arbitrary File Delete Vulnerability in the Command Line Interface (CLI) CWE-22	6.5^AI	Medium^AI	2024-11-14
CVE-2024-5918	PAN-OS: Improper Certificate Validation Enables Impersonation of a Legitimate GlobalProtect User CWE-295	8.1^AI	High^AI	2024-11-14
CVE-2024-5919	PAN-OS: Authenticated XML External Entities (XXE) Injection Vulnerability CWE-611	7.7^AI	High^AI	2024-11-14
CVE-2024-2551	PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet CWE-476	7.5^AI	High^AI	2024-11-14
CVE-2024-9472	PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Traffic CWE-476	7.5^AI	High^AI	2024-11-14
CVE-2024-9468	PAN-OS: Firewall Denial of Service (DoS) via a Maliciously Crafted Packet CWE-787	7.5^AI	High^AI	2024-10-09
CVE-2022-0028	PAN-OS: Reflected Amplification Denial-of-Service (DoS) Vulnerability in URL Filtering CWE-406	8.6	High	2022-08-10

All 42 known CVE vulnerabilities affecting Cloud NGFW with full Chinese analysis, references, and POCs where available.