Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Palo Alto Networks — Vulnerabilities & Security Advisories 281

Browse all 281 CVE security advisories affecting Palo Alto Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Palo Alto Networks operates as a prominent cybersecurity vendor, primarily providing next-generation firewalls, cloud security solutions, and endpoint protection platforms to enterprise clients. The company’s software ecosystem, particularly its PAN-OS operating system, has historically been associated with a significant volume of Common Vulnerabilities and Exposures, currently totaling 280 recorded instances. These vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from input validation errors or improper access controls within management interfaces. While the firm maintains a robust security posture through regular patching cycles and proactive threat intelligence integration, the high CVE count reflects the complexity of its extensive feature set and the broad attack surface inherent in critical infrastructure components. Major incidents have been limited, with most issues resolved via timely updates, though the sheer number of disclosed flaws underscores the challenges of securing large-scale, continuously updated network security appliances.

Top products by Palo Alto Networks: PAN-OS Cloud NGFW GlobalProtect App Cortex XDR Agent Cortex XSOAR Cortex XDR Broker VM Expedition Prisma Cloud Compute Global Protect Agent Prisma Browser Traps Checkov by Prisma Cloud Autonomous Digital Experience Manager Prisma Access Browser Palo Alto Networks PAN-OS Bridgecrew Checkov Palo Alto Networks Expedition Prisma Cloud Compute Edition User-ID Credential Agent Prisma SD-WAN Cortex XDR Microsoft 365 Defender Pack PAN-OS OpenConfig Plugin Cortex XSOAR Microsoft Teams Marketplace ActiveMQ Content Pack Cortex XSOAR CommonScripts VM-Series Plugin GlobalProtect GlobalProtect Agent for Linux and OSX GlobalProtect Agent for Windows MineMeld
CVE IDTitleCVSSSeverityPublished
CVE-2026-0300 PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal — Cloud NGFWCWE-787 9.8AICriticalAI2026-05-06
CVE-2026-0232 Cortex XDR Agent: Local Administrator can disable the agent on Windows — Cortex XDR AgentCWE-15 6.0 -2026-04-13
CVE-2026-0233 Autonomous Digital Experience Manager: Improper validation of ADEM certificate — Autonomous Digital Experience ManagerCWE-295 8.8 -2026-04-13
CVE-2026-0234 Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration — Cortex XSOAR Microsoft Teams MarketplaceCWE-347 9.1 -2026-04-13
CVE-2026-0231 Cortex XDR Broker VM: Sensitive Information Disclosure Vulnerability — Cortex XDR Broker VMCWE-497 8.1AIHighAI2026-03-11
CVE-2026-0230 Cortex XDR Agent: Local Administrator can disable the agent on macOS — Cortex XDR AgentCWE-754 6.0AIMediumAI2026-03-11
CVE-2026-0229 PAN-OS: Denial of Service in Advanced DNS Security Feature — Cloud NGFWCWE-754 7.5AIHighAI2026-02-11
CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate — Cloud NGFWCWE-295 7.5AIHighAI2026-02-11
CVE-2026-0227 PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal — Cloud NGFWCWE-754 7.5AIHighAI2026-01-15
CVE-2025-4618 Prisma Browser: Sensitive Information Disclosure Vulnerability in Prisma Browser — Prisma BrowserCWE-316 5.5 -2025-11-14
CVE-2025-4617 Prisma Browser: Insufficient Policy Enforcement Vulnerability in Prisma Browser — Prisma BrowserCWE-424 5.5 -2025-11-14
CVE-2025-4616 Prisma Browser: Insufficient Validation of Untrusted Input Vulnerability in Prisma Browser — Prisma BrowserCWE-354 5.5 -2025-11-14
CVE-2025-4619 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Packets — Cloud NGFWCWE-754 7.5 -2025-11-13
CVE-2025-4615 PAN-OS: Improper Neutralization of Input in the Management Web Interface — Cloud NGFWCWE-83 7.2AIHighAI2025-10-09
CVE-2025-4614 PAN-OS: Session Token Disclosure Vulnerability — Cloud NGFWCWE-497 4.9AIMediumAI2025-10-09
CVE-2025-4234 Cortex XDR Microsoft 365 Defender Pack: Cleartext Exposure of Credentials — Cortex XDR Microsoft 365 Defender PackCWE-532 5.5 -2025-09-12
CVE-2025-4235 User-ID Credential Agent: Cleartext Exposure of Service Account password — User-ID Credential AgentCWE-497 8.8 -2025-09-12
CVE-2025-2184 Cortex XDR Broker VM: Secrets Shared Across Multiple Broker VM Images — Cortex XDR Broker VMCWE-1392 7.4AIHighAI2025-08-13
CVE-2025-2183 GlobalProtect App: Improper Certificate Validation Leads to Privilege Escalation — GlobalProtect AppCWE-295 8.0AIHighAI2025-08-13
CVE-2025-2182 PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK) — Cloud NGFWCWE-312 6.5AIMediumAI2025-08-13
CVE-2025-2181 Checkov by Prisma Cloud: Cleartext Exposure of Credentials — Checkov by Prisma CloudCWE-312 7.5AIHighAI2025-08-13
CVE-2025-2180 Checkov by Prisma Cloud: Unsafe Deserialization of Terraform Files Allows Code Execution — Checkov by Prisma CloudCWE-502 8.8AIHighAI2025-08-13
CVE-2025-2179 GlobalProtect App: Non Admin User Can Disable the GlobalProtect App — GlobalProtect AppCWE-266 6.1AIMediumAI2025-07-29
CVE-2025-0141 GlobalProtect App: Privilege Escalation (PE) Vulnerability — GlobalProtect AppCWE-426 7.8AIHighAI2025-07-09
CVE-2025-0140 GlobalProtect App: Non Admin User Can Disable the GlobalProtect App — GlobalProtect AppCWE-266 7.1AIHighAI2025-07-09
CVE-2025-0139 Autonomous Digital Experience Manager: Privilege Escalation (PE) Vulnerability — Autonomous Digital Experience ManagerCWE-266 7.8AIHighAI2025-07-09
CVE-2025-4227 GlobalProtect App: Interception in Endpoint Traffic Policy Enforcement — GlobalProtect AppCWE-319 4.6AIMediumAI2025-06-13
CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability — Cloud NGFWCWE-497 5.3AIMediumAI2025-06-13
CVE-2025-4228 Cortex XDR Broker VM: Privilege Escalation (PE) Vulnerability — Cortex XDR Broker VMCWE-266 7.2AIHighAI2025-06-12
CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI — Cloud NGFWCWE-78 7.2AIHighAI2025-06-12

This page lists every published CVE security advisory associated with Palo Alto Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.