Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Palo Alto Networks — Vulnerabilities & Security Advisories 281

Browse all 281 CVE security advisories affecting Palo Alto Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Palo Alto Networks operates as a prominent cybersecurity vendor, primarily providing next-generation firewalls, cloud security solutions, and endpoint protection platforms to enterprise clients. The company’s software ecosystem, particularly its PAN-OS operating system, has historically been associated with a significant volume of Common Vulnerabilities and Exposures, currently totaling 280 recorded instances. These vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from input validation errors or improper access controls within management interfaces. While the firm maintains a robust security posture through regular patching cycles and proactive threat intelligence integration, the high CVE count reflects the complexity of its extensive feature set and the broad attack surface inherent in critical infrastructure components. Major incidents have been limited, with most issues resolved via timely updates, though the sheer number of disclosed flaws underscores the challenges of securing large-scale, continuously updated network security appliances.

Found 24 results / 281Clear Filters
Top products by Palo Alto Networks: PAN-OS Cloud NGFW GlobalProtect App Cortex XDR Agent Cortex XSOAR Cortex XDR Broker VM Expedition Prisma Cloud Compute Global Protect Agent Prisma Browser Traps Checkov by Prisma Cloud Autonomous Digital Experience Manager Prisma Access Browser Palo Alto Networks PAN-OS Bridgecrew Checkov Palo Alto Networks Expedition Prisma Cloud Compute Edition User-ID Credential Agent Prisma SD-WAN Cortex XDR Microsoft 365 Defender Pack PAN-OS OpenConfig Plugin Cortex XSOAR Microsoft Teams Marketplace ActiveMQ Content Pack Cortex XSOAR CommonScripts VM-Series Plugin GlobalProtect GlobalProtect Agent for Linux and OSX GlobalProtect Agent for Windows MineMeld
CVE IDTitleCVSSSeverityPublished
CVE-2026-0232 Cortex XDR Agent: Local Administrator can disable the agent on Windows — Cortex XDR AgentCWE-15 6.0 -2026-04-13
CVE-2026-0230 Cortex XDR Agent: Local Administrator can disable the agent on macOS — Cortex XDR AgentCWE-754 6.0AIMediumAI2026-03-11
CVE-2025-0121 Cortex XDR Agent: Local Windows User Can Crash the Agent — Cortex XDR AgentCWE-476 7.1AIHighAI2025-04-11
CVE-2025-0112 Cortex XDR Agent: Local Windows User Can Disable the Agent — Cortex XDR AgentCWE-754 7.8 -2025-02-19
CVE-2024-9469 Cortex XDR Agent: Local Windows User Can Disable the Agent — Cortex XDR AgentCWE-754 7.8AIHighAI2024-10-09
CVE-2024-8690 Cortex XDR Agent: Local Windows Administrator Can Disable the Agent — Cortex XDR AgentCWE-440 6.7AIMediumAI2024-09-11
CVE-2024-5912 Cortex XDR Agent: Improper File Signature Verification Checks — Cortex XDR AgentCWE-347 8.4AIHighAI2024-07-10
CVE-2024-5909 Cortex XDR Agent: Local Windows User Can Disable the Agent — Cortex XDR AgentCWE-269 7.8AIHighAI2024-06-12
CVE-2024-5907 Cortex XDR Agent: Local Privilege Escalation (PE) Vulnerability — Cortex XDR AgentCWE-269 7.0AIHighAI2024-06-12
CVE-2024-5905 Cortex XDR Agent: Local Windows User Can Disrupt Functionality of the Agent — Cortex XDR AgentCWE-346 7.1AIHighAI2024-06-12
CVE-2023-3280 Cortex XDR Agent: Local Windows User Can Disable the Agent — Cortex XDR AgentCWE-755 5.5 Medium2023-09-13
CVE-2023-0002 Cortex XDR Agent: Product Disruption by Local Windows User — Cortex XDR agentCWE-693 5.5 Medium2023-02-08
CVE-2023-0001 Cortex XDR Agent: Cleartext Exposure of Agent Admin Password — Cortex XDR agentCWE-319 6.0 Medium2023-02-08
CVE-2022-0029 Cortex XDR Agent: Improper Link Resolution Vulnerability When Generating a Tech Support File — Cortex XDR AgentCWE-59 5.5 Medium2022-09-14
CVE-2022-0026 Cortex XDR Agent: Unintended Program Execution Leads to Local Privilege Escalation (PE) Vulnerability — Cortex XDR AgentCWE-282 6.7 Medium2022-05-11
CVE-2022-0025 Cortex XDR Agent: An Uncontrolled Search Path Element Leads to Local Privilege Escalation (PE) Vulnerability — Cortex XDR AgentCWE-427 6.7 Medium2022-05-11
CVE-2022-0015 Cortex XDR Agent: An Uncontrolled Search Path Element Leads to Local Privilege Escalation (PE) Vulnerability — Cortex XDR AgentCWE-427 7.8 High2022-01-12
CVE-2022-0014 Cortex XDR Agent: Unintended Program Execution When Using Live Terminal Session — Cortex XDR AgentCWE-426 6.7 Medium2022-01-12
CVE-2022-0013 Cortex XDR Agent: File Information Exposure Vulnerability When Generating Support File — Cortex XDR AgentCWE-538 5.0 Medium2022-01-12
CVE-2022-0012 Cortex XDR Agent: Local Arbitrary File Deletion Vulnerability — Cortex XDR AgentCWE-59 6.1 Medium2022-01-12
CVE-2021-3042 Cortex XDR Agent: Improper Control of User-Controlled File Leads to Local Privilege Escalation — Cortex XDR AgentCWE-427 7.8 High2021-07-15
CVE-2021-3041 Cortex XDR Agent: Improper control of user-controlled file leads to local privilege escalation — Cortex XDR AgentCWE-427 7.8 High2021-06-10
CVE-2020-2049 Cortex XDR Agent: Improper control of loaded DLL leads to local privilege escalation — Cortex XDR AgentCWE-427 7.8 High2020-12-09
CVE-2020-2020 Cortex XDR Agent: Exceptional condition denial-of-service (DoS) — Cortex XDR AgentCWE-755 5.5 Medium2020-12-09

This page lists every published CVE security advisory associated with Palo Alto Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.