Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Palo Alto Networks — Vulnerabilities & Security Advisories 316

Browse all 316 CVE security advisories affecting Palo Alto Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Palo Alto Networks operates as a prominent cybersecurity vendor, primarily providing next-generation firewalls, cloud security solutions, and endpoint protection platforms to enterprise clients. The company’s software ecosystem, particularly its PAN-OS operating system, has historically been associated with a significant volume of Common Vulnerabilities and Exposures, currently totaling 280 recorded instances. These vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from input validation errors or improper access controls within management interfaces. While the firm maintains a robust security posture through regular patching cycles and proactive threat intelligence integration, the high CVE count reflects the complexity of its extensive feature set and the broad attack surface inherent in critical infrastructure components. Major incidents have been limited, with most issues resolved via timely updates, though the sheer number of disclosed flaws underscores the challenges of securing large-scale, continuously updated network security appliances.

Found 54 results / 316Clear Filters
Top products by Palo Alto Networks: PAN-OS Cloud NGFW GlobalProtect App Cortex XDR Agent Cortex XSOAR Cortex XDR Broker VM Expedition Prisma Browser Prisma Access Agent Prisma Cloud Compute Global Protect Agent Trust Protection Foundation Prisma SD-WAN ION Prisma Access Browser Autonomous Digital Experience Manager Checkov by Prisma Cloud Palo Alto Networks Expedition Palo Alto Networks PAN-OS Bridgecrew Checkov Traps WildFire WF-500 and WF-500-B Broker VM Cortex XDR Microsoft 365 Defender Pack User-ID Credential Agent Cortex XSIAM CommvaultSecurityIQ Marketplace Cortex XSOAR Microsoft Teams Marketplace Chronosphere Chronocollector Prisma Cloud Compute Edition Prisma SD-WAN PAN-OS OpenConfig Plugin
CVE IDTitleCVSSSeverityPublished
CVE-2026-0273 PAN-OS: Authenticated Admin Command Injection Vulnerability via CLI or Web UI — Cloud NGFWCWE-78--2026-06-10
CVE-2026-0272 PAN-OS: Privilege Escalation (PE) Vulnerability in the Command Line Interface (CLI) — Cloud NGFWCWE-862--2026-06-10
CVE-2026-0269 PAN-OS: Denial of Service (DoS) in Tunnel Traffic Processing — Cloud NGFWCWE-754--2026-06-10
CVE-2026-0266 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface — Cloud NGFWCWE-79--2026-06-10
CVE-2026-0256 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface — Cloud NGFWCWE-79--2026-05-13
CVE-2026-0257 PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities — Cloud NGFWCWE-565--2026-05-13
CVE-2026-0258 PAN-OS: Server-Side Request Forgery (SSRF) in IKEv2 Certificate URL Fetching — Cloud NGFWCWE-918--2026-05-13
CVE-2026-0261 PAN-OS: Authenticated Admin Command Injection Vulnerability — Cloud NGFWCWE-78--2026-05-13
CVE-2026-0262 PAN-OS: Denial of Service Vulnerabilities in Network Traffic Parsing — Cloud NGFWCWE-754--2026-05-13
CVE-2026-0263 PAN-OS: Remote Code Execution (RCE) in IKEv2 Processing — Cloud NGFWCWE-787--2026-05-13
CVE-2026-0264 PAN-OS: Heap-Based Buffer Overflow in DNS Proxy and DNS Server Allows Unauthenticated Remote Code Execution — Cloud NGFWCWE-122--2026-05-13
CVE-2026-0265 PAN-OS: Authentication Bypass with Cloud Authentication Service (CAS) enabled — Cloud NGFWCWE-347--2026-05-13
CVE-2026-0300 PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal — Cloud NGFWCWE-787 9.8AICriticalAI2026-05-06
CVE-2026-0229 PAN-OS: Denial of Service in Advanced DNS Security Feature — Cloud NGFWCWE-754 7.5AIHighAI2026-02-11
CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate — Cloud NGFWCWE-295 7.5AIHighAI2026-02-11
CVE-2026-0227 PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal — Cloud NGFWCWE-754 7.5AIHighAI2026-01-15
CVE-2025-4619 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Packets — Cloud NGFWCWE-754 7.5 -2025-11-13
CVE-2025-4615 PAN-OS: Improper Neutralization of Input in the Management Web Interface — Cloud NGFWCWE-83 7.2AIHighAI2025-10-09
CVE-2025-4614 PAN-OS: Session Token Disclosure Vulnerability — Cloud NGFWCWE-497 4.9AIMediumAI2025-10-09
CVE-2025-2182 PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK) — Cloud NGFWCWE-312 6.5AIMediumAI2025-08-13
CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability — Cloud NGFWCWE-497 5.3AIMediumAI2025-06-13
CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI — Cloud NGFWCWE-78 7.2AIHighAI2025-06-12
CVE-2025-4231 PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface — Cloud NGFWCWE-77 7.2AIHighAI2025-06-12
CVE-2025-0136 PAN-OS: Unencrypted Data Transfer when using AES-128-CCM on Intel-based hardware devices — Cloud NGFWCWE-319 7.5AIHighAI2025-05-14
CVE-2025-0137 PAN-OS: Improper Neutralization of Input in the Management Web Interface — Cloud NGFWCWE-83 7.2AIHighAI2025-05-14
CVE-2025-0133 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal — Cloud NGFWCWE-79 6.1AIMediumAI2025-05-14
CVE-2025-0130 PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted Packets — Cloud NGFWCWE-754 7.5AIHighAI2025-05-14
CVE-2025-0123 PAN-OS: Information Disclosure Vulnerability in HTTP/2 Packet Captures — Cloud NGFWCWE-312 4.9AIMediumAI2025-04-11
CVE-2025-0128 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet — Cloud NGFWCWE-754 7.5AIHighAI2025-04-11
CVE-2025-0127 PAN-OS: Authenticated Admin Command Injection Vulnerability in PAN-OS VM-Series — Cloud NGFWCWE-78 7.2AIHighAI2025-04-11

This page lists every published CVE security advisory associated with Palo Alto Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.