Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

Palo Alto Networks — Vulnerabilities & Security Advisories 307

Browse all 307 CVE security advisories affecting Palo Alto Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Palo Alto Networks operates as a prominent cybersecurity vendor, primarily providing next-generation firewalls, cloud security solutions, and endpoint protection platforms to enterprise clients. The company’s software ecosystem, particularly its PAN-OS operating system, has historically been associated with a significant volume of Common Vulnerabilities and Exposures, currently totaling 280 recorded instances. These vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from input validation errors or improper access controls within management interfaces. While the firm maintains a robust security posture through regular patching cycles and proactive threat intelligence integration, the high CVE count reflects the complexity of its extensive feature set and the broad attack surface inherent in critical infrastructure components. Major incidents have been limited, with most issues resolved via timely updates, though the sheer number of disclosed flaws underscores the challenges of securing large-scale, continuously updated network security appliances.

Top products by Palo Alto Networks: PAN-OS Cloud NGFW GlobalProtect App Cortex XDR Agent Cortex XSOAR Cortex XDR Broker VM Expedition Prisma Browser Prisma Access Agent Prisma Cloud Compute Trust Protection Foundation Global Protect Agent Prisma Access Browser Autonomous Digital Experience Manager Checkov by Prisma Cloud Bridgecrew Checkov Traps Prisma SD-WAN ION Palo Alto Networks PAN-OS Palo Alto Networks Expedition Cortex XDR Microsoft 365 Defender Pack Cortex XSOAR Microsoft Teams Marketplace Chronosphere Chronocollector User-ID Credential Agent Broker VM Prisma Cloud Compute Edition WildFire WF-500 and WF-500-B Prisma SD-WAN PAN-OS OpenConfig Plugin ActiveMQ Content Pack
CVE IDTitleCVSSSeverityPublished
CVE-2020-2037 PAN-OS: OS command injection vulnerability in the management web interface — PAN-OSCWE-78 7.2 High2020-09-09
CVE-2020-2035 PAN-OS: URL filtering policy is not enforced on TLS handshakes for decrypted HTTPS sessions — PAN-OSCWE-20 3.0 Low2020-08-12
CVE-2020-2034 PAN-OS: OS command injection vulnerability in GlobalProtect portal — PAN-OSCWE-78 8.1 High2020-07-08
CVE-2020-2030 PAN-OS: OS command injection vulnerability in the management interface — PAN-OSCWE-78 7.2 High2020-07-08
CVE-2020-2031 PAN-OS: Integer underflow in the management interface — PAN-OSCWE-191 4.9 Medium2020-07-08
CVE-2020-1982 PAN-OS: TLS 1.0 usage for certain communications with Palo Alto Networks cloud delivered services — PAN-OSCWE-326 4.8 Medium2020-07-08
CVE-2020-2021 PAN-OS: Authentication Bypass in SAML Authentication — PAN-OSCWE-347 10.0 Critical2020-06-29
CVE-2020-2033 GlobalProtect App: Missing certificate validation vulnerability can disclose pre-logon authentication cookie — GlobalProtect AppCWE-290 5.3 Medium2020-06-10
CVE-2020-2032 GlobalProtect App: File race condition vulnerability leads to local privilege escalation during upgrade — GlobalProtect AppCWE-367 7.0 High2020-06-10
CVE-2020-2029 PAN-OS: OS command injection vulnerability in management interface certificate generator — PAN-OSCWE-78 7.2 High2020-06-10
CVE-2020-2028 PAN-OS: OS command injection vulnerability in FIPS-CC mode certificate verification — PAN-OSCWE-78 7.2 High2020-06-10
CVE-2020-2027 PAN-OS: Buffer overflow in authd authentication response — PAN-OSCWE-121 7.2 High2020-06-10
CVE-2020-2011 PAN-OS: Panorama registration denial of service — PAN-OSCWE-20 7.5 High2020-05-13
CVE-2020-2012 PAN-OS: Panorama: XML external entity reference ('XXE') vulnerability leads the to information leak — PAN-OSCWE-611 7.5 High2020-05-13
CVE-2020-2013 PAN-OS: Panorama context switch session cookie disclosure — PAN-OSCWE-319 8.3 High2020-05-13
CVE-2020-2014 PAN-OS: OS injection vulnerability in PAN-OS management server — PAN-OSCWE-78 8.8 High2020-05-13
CVE-2020-2015 PAN-OS: Buffer overflow in the management server — PAN-OSCWE-120 8.8 High2020-05-13
CVE-2020-2016 PAN-OS: Temporary file race condition vulnerability in PAN-OS leads to local privilege escalation — PAN-OSCWE-377 7.0 High2020-05-13
CVE-2020-2017 PAN-OS: DOM-Based cross site scripting vulnerability in management web interface — PAN-OSCWE-79 8.8 High2020-05-13
CVE-2020-2018 PAN-OS: Panorama authentication bypass vulnerability — PAN-OSCWE-287 9.0 Critical2020-05-13
CVE-2020-1993 PAN-OS: GlobalProtect Portal PHP session fixation vulnerability — PAN-OSCWE-384 3.7 Low2020-05-13
CVE-2020-1994 PAN-OS: Predictable temporary file vulnerability — PAN-OSCWE-377 4.1 Medium2020-05-13
CVE-2020-1995 PAN-OS: Management server rasmgr denial of service — PAN-OSCWE-476 4.9 Medium2020-05-13
CVE-2020-1996 PAN-OS: Panorama management server log injection — PAN-OSCWE-862 5.3 Medium2020-05-13
CVE-2020-1997 PAN-OS: GlobalProtect registration open redirect — PAN-OSCWE-601 5.3 Medium2020-05-13
CVE-2020-1998 PAN-OS: Improper SAML SSO authorization of shared local users — PAN-OSCWE-285 5.4 Medium2020-05-13
CVE-2020-2001 PAN-OS: Panorama External control of file vulnerability leads to privilege escalation — PAN-OSCWE-123 8.1 High2020-05-13
CVE-2020-2002 PAN-OS: Spoofed Kerberos key distribution center authentication bypass — PAN-OSCWE-290 8.1 High2020-05-13
CVE-2020-2003 PAN-OS: Authenticated administrator can delete arbitrary system file — PAN-OSCWE-73 6.5 Medium2020-05-13
CVE-2020-2004 GlobalProtect App: Passwords may be logged in clear text while collecting troubleshooting logs — GlobalProtect AppCWE-534 6.8 Medium2020-05-13

This page lists every published CVE security advisory associated with Palo Alto Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.