The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of PAN-OS

TLS: information disclosure via ROBOT Attack
An attacker can bypass access restrictions to data via ROBOT Attack of TLS, in order to obtain sensitive information...
CERTFR-2017-ALE-020, cisco-sa-20171212-bleichenbacher, CSCvg74693, CTX230238, K21905460, KB0080545, PAN-SA-2017-0032, ROBOT Attack, VIGILANCE-VUL-24749, VU#144389
PAN-OS: code execution via Packet Capture Management
An attacker can use a vulnerability via Packet Capture Management of PAN-OS, in order to run code...
CVE-2017-15940, PAN-SA-2017-0028, VIGILANCE-VUL-24693
PAN-OS: external XML entity injection
An attacker can transmit malicious XML data to PAN-OS, in order to read a file, scan sites, or trigger a denial of service...
CVE-2017-15943, PAN-SA-2017-0026, VIGILANCE-VUL-24691
PAN-OS: denial of service via Management Interface
An attacker can generate a fatal error via Management Interface of PAN-OS, in order to trigger a denial of service...
CVE-2017-15942, PAN-SA-2017-0025, VIGILANCE-VUL-24690
Palo Alto GlobalProtect Agent: privilege escalation via Image Path
An attacker can bypass restrictions via Image Path of Palo Alto GlobalProtect Agent, in order to escalate his privileges...
PAN-SA-2017-0029, VIGILANCE-VUL-24673
PAN-OS: external XML entity injection via GlobalProtect
An attacker can transmit malicious XML data via GlobalProtect to PAN-OS, in order to read a file, scan sites, or trigger a denial of service...
CVE-2017-9458, PAN-SA-2017-0024, VIGILANCE-VUL-23682
PAN-OS: Cross Site Scripting via GlobalProtect
An attacker can trigger a Cross Site Scripting via GlobalProtect of PAN-OS, in order to run JavaScript code in the context of the web site...
CVE-2017-12416, PAN-SA-2017-0023, VIGILANCE-VUL-23681
PAN-OS: code execution via DNS Proxy FQDN
An attacker can use a vulnerability via DNS Proxy FQDN of PAN-OS, in order to run code...
CVE-2017-8390, PAN-SA-2017-0021, VIGILANCE-VUL-23324
PAN-OS: Cross Site Scripting via GlobalProtect
An attacker can trigger a Cross Site Scripting via GlobalProtect of PAN-OS, in order to run JavaScript code in the context of the web site...
CVE-2017-9467, PAN-SA-2017-0020, VIGILANCE-VUL-23323
PAN-OS: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of PAN-OS, in order to run JavaScript code in the context of the web site...
CVE-2017-9459, PAN-SA-2017-0019, VIGILANCE-VUL-23322
Our database contains other pages. You can request a free trial to read them.

Display information about PAN-OS: