Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Palo Alto Networks — Vulnerabilities & Security Advisories 307

Browse all 307 CVE security advisories affecting Palo Alto Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Palo Alto Networks operates as a prominent cybersecurity vendor, primarily providing next-generation firewalls, cloud security solutions, and endpoint protection platforms to enterprise clients. The company’s software ecosystem, particularly its PAN-OS operating system, has historically been associated with a significant volume of Common Vulnerabilities and Exposures, currently totaling 280 recorded instances. These vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from input validation errors or improper access controls within management interfaces. While the firm maintains a robust security posture through regular patching cycles and proactive threat intelligence integration, the high CVE count reflects the complexity of its extensive feature set and the broad attack surface inherent in critical infrastructure components. Major incidents have been limited, with most issues resolved via timely updates, though the sheer number of disclosed flaws underscores the challenges of securing large-scale, continuously updated network security appliances.

Top products by Palo Alto Networks: PAN-OS Cloud NGFW GlobalProtect App Cortex XDR Agent Cortex XSOAR Cortex XDR Broker VM Expedition Prisma Browser Prisma Access Agent Prisma Cloud Compute Trust Protection Foundation Global Protect Agent Prisma Access Browser Autonomous Digital Experience Manager Checkov by Prisma Cloud Bridgecrew Checkov Traps Prisma SD-WAN ION Palo Alto Networks PAN-OS Palo Alto Networks Expedition Cortex XDR Microsoft 365 Defender Pack Cortex XSOAR Microsoft Teams Marketplace Chronosphere Chronocollector User-ID Credential Agent Broker VM Prisma Cloud Compute Edition WildFire WF-500 and WF-500-B Prisma SD-WAN PAN-OS OpenConfig Plugin ActiveMQ Content Pack
CVE IDTitleCVSSSeverityPublished
CVE-2020-2005 PAN-OS: GlobalProtect Clientless VPN session hijacking — PAN-OSCWE-79 7.1 High2020-05-13
CVE-2020-2006 PAN-OS: Buffer overflow in management server payload parser — PAN-OSCWE-121 7.2 High2020-05-13
CVE-2020-2007 PAN-OS: OS command injection in management server — PAN-OSCWE-78 7.2 High2020-05-13
CVE-2020-2008 PAN-OS: OS command injection or arbitrary file deletion vulnerability — PAN-OSCWE-73 7.2 High2020-05-13
CVE-2020-2009 PAN-OS: Panorama SD WAN arbitrary file creation — PAN-OSCWE-73 7.2 High2020-05-13
CVE-2020-2010 PAN-OS: Authenticated user command injection vulnerability — PAN-OSCWE-78 7.2 High2020-05-13
CVE-2020-1991 Traps: Insecure temporary file vulnerability may allow privilege escalation on Windows — TrapsCWE-377 7.8 High2020-04-08
CVE-2020-1992 PAN-OS on PA-7000 Series: Varrcvr daemon network-based denial of service or privilege escalation — PAN-OSCWE-134 8.1 High2020-04-08
CVE-2020-1978 VM-Series on Microsoft Azure: Inadvertent collection of credentials in Tech support files on HA configured VMs — VM-Series PluginCWE-255 5.8 Medium2020-04-08
CVE-2020-1987 Global Protect Agent: VPN cookie local information disclosure — Global Protect AgentCWE-200 3.9 Low2020-04-08
CVE-2020-1988 Global Protect Agent: Local privilege escalation due to an unquoted search path vulnerability — Global Protect AgentCWE-428 4.2 Medium2020-04-08
CVE-2020-1989 Global Protect Agent: Incorrect privilege assignment allows local privilege escalation — Global Protect AgentCWE-266 7.0 High2020-04-08
CVE-2020-1990 PAN-OS: Buffer overflow in the management server — PAN-OSCWE-121 7.2 High2020-04-08
CVE-2020-1979 PAN-OS: A format string vulnerability in PAN-OS log daemon (logd) on Panorama allows local privilege escalation — PAN-OSCWE-134 8.1 High2020-03-11
CVE-2020-1980 PAN-OS: Shell injection vulnerability in PAN-OS CLI allows execution of shell commands — PAN-OSCWE-77 7.8 High2020-03-11
CVE-2020-1981 PAN-OS: Predictable temporary filename vulnerability allows local privilege escalation — PAN-OSCWE-377 7.0 High2020-03-11
CVE-2020-1975 Missing XML Validation in PAN-OS Web Interface — PAN-OSCWE-112 6.8 Medium2020-02-12
CVE-2020-1976 GlobalProtect on MacOS: Local denial-of-service (DoS) vulnerability. — GlobalProtectCWE-642 4.7 Medium2020-02-12
CVE-2020-1977 Expedition Migration Tool: Insufficient Cross Site Request Forgery protection. — ExpeditionCWE-352 7.5 High2020-02-12
CVE-2019-17440 PAN-OS on PA-7000 Series: Improper restriction of communication to Log Forwarding Card (LFC) allows root access — PAN-OSCWE-923 10.0 Critical2019-12-20
CVE-2019-17437 PAN-OS: Custom-role users may escalate privileges — PAN-OSCWE-280 7.8 High2019-12-05
CVE-2019-17435 Palo Alto Networks GlobalProtect agent 安全漏洞 — GlobalProtect Agent for Windows 7.8 -2019-10-16
CVE-2019-17436 Palo Alto Networks GlobalProtect agent 安全漏洞 — GlobalProtect Agent for Linux and OSX 7.1 -2019-10-16
CVE-2019-1581 PAN-OS: Remote code execution vulnerability in the PAN-OS SSH device management interface — PAN-OSCWE-78 9.8 Critical2019-08-23
CVE-2019-1578 Palo Alto Networks MineMeld 跨站脚本漏洞 — MineMeld 6.1 -2019-07-01
CVE-2019-1577 Palo Alto Networks Traps 代码注入漏洞 — Traps 5.4 -2019-07-01
CVE-2019-1568 Palo Alto Networks Demisto 跨站脚本漏洞 — Demisto 6.1 -2019-05-09
CVE-2019-1574 Palo Alto Networks Expedition Migration Tool 跨站脚本漏洞 — Expedition Migration Tool 5.4 -2019-04-12
CVE-2019-1573 Information Disclosure in GlobalProtect Agent — GlobalProtect AgentCWE-226 2.5 Low2019-04-09
CVE-2019-1572 Palo Alto Networks PAN-OS 授权问题漏洞 — PAN-OS 7.5 -2019-03-26

This page lists every published CVE security advisory associated with Palo Alto Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.