Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Palo Alto Networks — Vulnerabilities & Security Advisories 307

Browse all 307 CVE security advisories affecting Palo Alto Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Palo Alto Networks operates as a prominent cybersecurity vendor, primarily providing next-generation firewalls, cloud security solutions, and endpoint protection platforms to enterprise clients. The company’s software ecosystem, particularly its PAN-OS operating system, has historically been associated with a significant volume of Common Vulnerabilities and Exposures, currently totaling 280 recorded instances. These vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from input validation errors or improper access controls within management interfaces. While the firm maintains a robust security posture through regular patching cycles and proactive threat intelligence integration, the high CVE count reflects the complexity of its extensive feature set and the broad attack surface inherent in critical infrastructure components. Major incidents have been limited, with most issues resolved via timely updates, though the sheer number of disclosed flaws underscores the challenges of securing large-scale, continuously updated network security appliances.

Found 122 results / 307Clear Filters
Top products by Palo Alto Networks: PAN-OS Cloud NGFW GlobalProtect App Cortex XDR Agent Cortex XSOAR Cortex XDR Broker VM Expedition Prisma Browser Prisma Access Agent Prisma Cloud Compute Trust Protection Foundation Global Protect Agent Prisma Access Browser Autonomous Digital Experience Manager Checkov by Prisma Cloud Bridgecrew Checkov Traps Prisma SD-WAN ION Palo Alto Networks PAN-OS Palo Alto Networks Expedition Cortex XDR Microsoft 365 Defender Pack Cortex XSOAR Microsoft Teams Marketplace Chronosphere Chronocollector User-ID Credential Agent Broker VM Prisma Cloud Compute Edition WildFire WF-500 and WF-500-B Prisma SD-WAN PAN-OS OpenConfig Plugin ActiveMQ Content Pack
CVE IDTitleCVSSSeverityPublished
CVE-2021-3037 PAN-OS: Secrets for scheduled configuration exports are logged in system logs — PAN-OSCWE-534 2.3 Low2021-04-20
CVE-2021-3036 PAN-OS: Administrator secrets are logged in web server logs when using the PAN-OS XML API incorrectly — PAN-OSCWE-532 4.4 Medium2021-04-20
CVE-2021-3032 PAN-OS: Configuration secrets for log forwarding may be logged in system logs — PAN-OSCWE-532 4.4 Medium2021-01-13
CVE-2021-3031 PAN-OS: Information exposure in Ethernet data frame construction (Etherleak) — PAN-OSCWE-200 4.3 Medium2021-01-13
CVE-2020-2050 PAN-OS: Authentication bypass vulnerability in GlobalProtect SSL VPN client certificate verification — PAN-OSCWE-285 8.2 High2020-11-12
CVE-2020-2048 PAN-OS: System proxy passwords may be logged in clear text while viewing system state — PAN-OSCWE-532 3.3 Low2020-11-12
CVE-2020-2022 PAN-OS: Panorama session disclosure during context switch into managed device — PAN-OSCWE-200 7.5 High2020-11-12
CVE-2020-1999 PAN-OS: Threat signatures are evaded by specifically crafted packets — PAN-OSCWE-754 5.3 Medium2020-11-12
CVE-2020-2000 PAN-OS: OS command injection and memory corruption vulnerability — PAN-OSCWE-20 7.2 High2020-11-12
CVE-2020-2043 PAN-OS: Passwords may be logged in clear text when using after-change-detail custom syslog field for config logs — PAN-OSCWE-532 3.3 Low2020-09-09
CVE-2020-2044 PAN-OS: Passwords may be logged in clear text while storing operational command (op command) history — PAN-OSCWE-532 3.3 Low2020-09-09
CVE-2020-2042 PAN-OS: Buffer overflow in the management web interface — PAN-OSCWE-121 7.2 High2020-09-09
CVE-2020-2040 PAN-OS: Buffer overflow when Captive Portal or Multi-Factor Authentication (MFA) is enabled — PAN-OSCWE-120 9.8 Critical2020-09-09
CVE-2020-2041 PAN-OS: Management web interface denial-of-service (DoS) — PAN-OSCWE-16 7.5 High2020-09-09
CVE-2020-2038 PAN-OS: OS command injection vulnerability in the management web interface — PAN-OSCWE-78 7.2 High2020-09-09
CVE-2020-2039 PAN-OS: Management web interface denial-of-service (DoS) through unauthenticated file upload — PAN-OSCWE-400 5.3 Medium2020-09-09
CVE-2020-2036 PAN-OS: Reflected Cross-Site Scripting (XSS) vulnerability in management web interface — PAN-OSCWE-79 8.8 High2020-09-09
CVE-2020-2037 PAN-OS: OS command injection vulnerability in the management web interface — PAN-OSCWE-78 7.2 High2020-09-09
CVE-2020-2035 PAN-OS: URL filtering policy is not enforced on TLS handshakes for decrypted HTTPS sessions — PAN-OSCWE-20 3.0 Low2020-08-12
CVE-2020-2034 PAN-OS: OS command injection vulnerability in GlobalProtect portal — PAN-OSCWE-78 8.1 High2020-07-08
CVE-2020-2030 PAN-OS: OS command injection vulnerability in the management interface — PAN-OSCWE-78 7.2 High2020-07-08
CVE-2020-2031 PAN-OS: Integer underflow in the management interface — PAN-OSCWE-191 4.9 Medium2020-07-08
CVE-2020-1982 PAN-OS: TLS 1.0 usage for certain communications with Palo Alto Networks cloud delivered services — PAN-OSCWE-326 4.8 Medium2020-07-08
CVE-2020-2021 PAN-OS: Authentication Bypass in SAML Authentication — PAN-OSCWE-347 10.0 Critical2020-06-29
CVE-2020-2029 PAN-OS: OS command injection vulnerability in management interface certificate generator — PAN-OSCWE-78 7.2 High2020-06-10
CVE-2020-2028 PAN-OS: OS command injection vulnerability in FIPS-CC mode certificate verification — PAN-OSCWE-78 7.2 High2020-06-10
CVE-2020-2027 PAN-OS: Buffer overflow in authd authentication response — PAN-OSCWE-121 7.2 High2020-06-10
CVE-2020-2011 PAN-OS: Panorama registration denial of service — PAN-OSCWE-20 7.5 High2020-05-13
CVE-2020-2012 PAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak — PAN-OSCWE-611 7.5 High2020-05-13
CVE-2020-2013 PAN-OS: Panorama context switch session cookie disclosure — PAN-OSCWE-319 8.3 High2020-05-13

This page lists every published CVE security advisory associated with Palo Alto Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.