Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

PAN-OS — Vulnerabilities & Security Advisories 122

All 122 CVE vulnerabilities found in PAN-OS, with AI-generated Chinese analysis, references, and POCs.

This page is a vulnerability aggregation resource for the PAN-OS software developed by Palo Alto Networks, categorized under network device and firewall weaknesses. It collects and organizes security findings related to authentication bypasses, remote code execution, denial of service, and privilege escalation flaws affecting various versions of the PAN-OS operating system. The data covers a broad historical range, including recent critical advisories released within the last few years as well as older, long-patched issues from earlier releases, providing a comprehensive timeline of security evolution. Readers can use this resource to track vendor-specific advisories from Palo Alto Networks, allowing for a clear understanding of how quickly patches are deployed for different threat levels. It also facilitates the study of specific weakness classes, such as buffer overflows or injection attacks, by showing their prevalence and impact across the PAN-OS ecosystem. Furthermore, users can look up a specific product version’s vulnerability history to assess risk exposure over time and identify patterns in recurring security defects. This aggregated view supports security teams in prioritizing remediation efforts, conducting impact analyses, and maintaining a robust security posture by understanding the context of each flaw. The information is presented in a structured format to aid in manual review and automated monitoring integration, ensuring that administrators have access to accurate and up-to-date data without needing to cross-reference multiple disparate sources. All entries are sourced from official vendor notices and verified third-party reports to maintain high integrity.

Vendor: Palo Alto Networks

CVE IDTitleCVSSSeverityPublished
CVE-2021-3037 PAN-OS: Secrets for scheduled configuration exports are logged in system logs CWE-534 2.3 Low2021-04-20
CVE-2021-3036 PAN-OS: Administrator secrets are logged in web server logs when using the PAN-OS XML API incorrectly CWE-532 4.4 Medium2021-04-20
CVE-2021-3032 PAN-OS: Configuration secrets for log forwarding may be logged in system logs CWE-532 4.4 Medium2021-01-13
CVE-2021-3031 PAN-OS: Information exposure in Ethernet data frame construction (Etherleak) CWE-200 4.3 Medium2021-01-13
CVE-2020-2050 PAN-OS: Authentication bypass vulnerability in GlobalProtect SSL VPN client certificate verification CWE-285 8.2 High2020-11-12
CVE-2020-2048 PAN-OS: System proxy passwords may be logged in clear text while viewing system state CWE-532 3.3 Low2020-11-12
CVE-2020-2022 PAN-OS: Panorama session disclosure during context switch into managed device CWE-200 7.5 High2020-11-12
CVE-2020-1999 PAN-OS: Threat signatures are evaded by specifically crafted packets CWE-754 5.3 Medium2020-11-12
CVE-2020-2000 PAN-OS: OS command injection and memory corruption vulnerability CWE-20 7.2 High2020-11-12
CVE-2020-2043 PAN-OS: Passwords may be logged in clear text when using after-change-detail custom syslog field for config logs CWE-532 3.3 Low2020-09-09
CVE-2020-2044 PAN-OS: Passwords may be logged in clear text while storing operational command (op command) history CWE-532 3.3 Low2020-09-09
CVE-2020-2042 PAN-OS: Buffer overflow in the management web interface CWE-121 7.2 High2020-09-09
CVE-2020-2040 PAN-OS: Buffer overflow when Captive Portal or Multi-Factor Authentication (MFA) is enabled CWE-120 9.8 Critical2020-09-09
CVE-2020-2041 PAN-OS: Management web interface denial-of-service (DoS) CWE-16 7.5 High2020-09-09
CVE-2020-2038 PAN-OS: OS command injection vulnerability in the management web interface CWE-78 7.2 High2020-09-09
CVE-2020-2039 PAN-OS: Management web interface denial-of-service (DoS) through unauthenticated file upload CWE-400 5.3 Medium2020-09-09
CVE-2020-2036 PAN-OS: Reflected Cross-Site Scripting (XSS) vulnerability in management web interface CWE-79 8.8 High2020-09-09
CVE-2020-2037 PAN-OS: OS command injection vulnerability in the management web interface CWE-78 7.2 High2020-09-09
CVE-2020-2035 PAN-OS: URL filtering policy is not enforced on TLS handshakes for decrypted HTTPS sessions CWE-20 3.0 Low2020-08-12
CVE-2020-2034 PAN-OS: OS command injection vulnerability in GlobalProtect portal CWE-78 8.1 High2020-07-08
CVE-2020-2030 PAN-OS: OS command injection vulnerability in the management interface CWE-78 7.2 High2020-07-08
CVE-2020-2031 PAN-OS: Integer underflow in the management interface CWE-191 4.9 Medium2020-07-08
CVE-2020-1982 PAN-OS: TLS 1.0 usage for certain communications with Palo Alto Networks cloud delivered services CWE-326 4.8 Medium2020-07-08
CVE-2020-2021 PAN-OS: Authentication Bypass in SAML Authentication CWE-347 10.0 Critical2020-06-29
CVE-2020-2029 PAN-OS: OS command injection vulnerability in management interface certificate generator CWE-78 7.2 High2020-06-10
CVE-2020-2028 PAN-OS: OS command injection vulnerability in FIPS-CC mode certificate verification CWE-78 7.2 High2020-06-10
CVE-2020-2027 PAN-OS: Buffer overflow in authd authentication response CWE-121 7.2 High2020-06-10
CVE-2020-2011 PAN-OS: Panorama registration denial of service CWE-20 7.5 High2020-05-13
CVE-2020-2012 PAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak CWE-611 7.5 High2020-05-13
CVE-2020-2013 PAN-OS: Panorama context switch session cookie disclosure CWE-319 8.3 High2020-05-13

All 122 known CVE vulnerabilities affecting PAN-OS with full Chinese analysis, references, and POCs where available.