Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Palo Alto Networks — Vulnerabilities & Security Advisories 281

Browse all 281 CVE security advisories affecting Palo Alto Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Palo Alto Networks operates as a prominent cybersecurity vendor, primarily providing next-generation firewalls, cloud security solutions, and endpoint protection platforms to enterprise clients. The company’s software ecosystem, particularly its PAN-OS operating system, has historically been associated with a significant volume of Common Vulnerabilities and Exposures, currently totaling 280 recorded instances. These vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from input validation errors or improper access controls within management interfaces. While the firm maintains a robust security posture through regular patching cycles and proactive threat intelligence integration, the high CVE count reflects the complexity of its extensive feature set and the broad attack surface inherent in critical infrastructure components. Major incidents have been limited, with most issues resolved via timely updates, though the sheer number of disclosed flaws underscores the challenges of securing large-scale, continuously updated network security appliances.

Top products by Palo Alto Networks: PAN-OS Cloud NGFW GlobalProtect App Cortex XDR Agent Cortex XSOAR Cortex XDR Broker VM Expedition Prisma Cloud Compute Global Protect Agent Prisma Browser Traps Checkov by Prisma Cloud Autonomous Digital Experience Manager Prisma Access Browser Palo Alto Networks PAN-OS Bridgecrew Checkov Palo Alto Networks Expedition Prisma Cloud Compute Edition User-ID Credential Agent Prisma SD-WAN Cortex XDR Microsoft 365 Defender Pack PAN-OS OpenConfig Plugin Cortex XSOAR Microsoft Teams Marketplace ActiveMQ Content Pack Cortex XSOAR CommonScripts VM-Series Plugin GlobalProtect GlobalProtect Agent for Linux and OSX GlobalProtect Agent for Windows MineMeld
CVE IDTitleCVSSSeverityPublished
CVE-2024-8691 PAN-OS: User Impersonation in GlobalProtect Portal — PAN-OSCWE-863 6.5AIMediumAI2024-09-11
CVE-2024-8690 Cortex XDR Agent: Local Windows Administrator Can Disable the Agent — Cortex XDR AgentCWE-440 6.7AIMediumAI2024-09-11
CVE-2024-8689 ActiveMQ Content Pack: Cleartext Exposure of Credentials — ActiveMQ Content PackCWE-312 7.5AIHighAI2024-09-11
CVE-2024-8688 PAN-OS: Arbitrary File Read Vulnerability in the Command Line Interface (CLI) — PAN-OSCWE-155 4.9AIMediumAI2024-09-11
CVE-2024-8687 PAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes — PAN-OSCWE-497 9.8AICriticalAI2024-09-11
CVE-2024-8686 PAN-OS: Command Injection Vulnerability — PAN-OSCWE-78 7.2AIHighAI2024-09-11
CVE-2024-5916 PAN-OS: Cleartext Exposure of External System Secrets — PAN-OSCWE-313 4.4AIMediumAI2024-08-14
CVE-2024-5915 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability — GlobalProtect AppCWE-732 7.8AIHighAI2024-08-14
CVE-2024-5914 Cortex XSOAR: Command Injection in CommonScripts Pack — Cortex XSOAR CommonScriptsCWE-77 9.8AICriticalAI2024-08-14
CVE-2024-5913 PAN-OS: Improper Input Validation Vulnerability in PAN-OS — PAN-OSCWE-20 6.1 Medium2024-07-10
CVE-2024-5912 Cortex XDR Agent: Improper File Signature Verification Checks — Cortex XDR AgentCWE-347 8.4AIHighAI2024-07-10
CVE-2024-5911 PAN-OS: File Upload Vulnerability in the Panorama Web Interface — PAN-OSCWE-434 6.5AIMediumAI2024-07-10
CVE-2024-5910 Expedition: Missing Authentication Leads to Admin Account Takeover — ExpeditionCWE-306 9.8AICriticalAI2024-07-10
CVE-2024-5909 Cortex XDR Agent: Local Windows User Can Disable the Agent — Cortex XDR AgentCWE-269 7.8AIHighAI2024-06-12
CVE-2024-5908 GlobalProtect App: Encrypted Credential Exposure via Log Files — GlobalProtect AppCWE-532 5.5AIMediumAI2024-06-12
CVE-2024-5907 Cortex XDR Agent: Local Privilege Escalation (PE) Vulnerability — Cortex XDR AgentCWE-269 7.0AIHighAI2024-06-12
CVE-2024-5906 Prisma Cloud Compute: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface — Prisma Cloud ComputeCWE-79 4.8AIMediumAI2024-06-12
CVE-2024-5905 Cortex XDR Agent: Local Windows User Can Disrupt Functionality of the Agent — Cortex XDR AgentCWE-346 7.1AIHighAI2024-06-12
CVE-2024-3400 PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect — PAN-OSCWE-77 10.0 Critical2024-04-12
CVE-2024-3388 PAN-OS: User Impersonation in GlobalProtect SSL VPN — PAN-OSCWE-269 4.1 Medium2024-04-10
CVE-2024-3387 PAN-OS: Weak Certificate Strength in Panorama Software Leads to Sensitive Information Disclosure — PAN-OSCWE-326 5.3 Medium2024-04-10
CVE-2024-3386 PAN-OS: Predefined Decryption Exclusions Does Not Work as Intended — PAN-OSCWE-436 5.3 Medium2024-04-10
CVE-2024-3385 PAN-OS: Firewall Denial of Service (DoS) when GTP Security is Disabled — PAN-OSCWE-20 7.5 High2024-04-10
CVE-2024-3384 PAN-OS: Firewall Denial of Service (DoS) via Malformed NTLM Packets — PAN-OSCWE-1286 7.5 High2024-04-10
CVE-2024-3383 PAN-OS: Improper Group Membership Change Vulnerability in Cloud Identity Engine (CIE) — PAN-OSCWE-282 7.4 High2024-04-10
CVE-2024-3382 PAN-OS: Firewall Denial of Service (DoS) via a Burst of Crafted Packets — PAN-OSCWE-770 7.5 High2024-04-10
CVE-2024-2433 PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss — PAN-OSCWE-269 4.3 Medium2024-03-13
CVE-2024-2432 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability — GlobalProtect AppCWE-269 4.5 Medium2024-03-13
CVE-2024-2431 GlobalProtect App: Local User Can Disable GlobalProtect — GlobalProtect AppCWE-269 5.5 Medium2024-03-13
CVE-2024-0011 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication — PAN-OSCWE-79 4.3 Medium2024-02-14

This page lists every published CVE security advisory associated with Palo Alto Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.