The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Palo Alto Firewall PA***

PAN-OS: buffer overflow via Management Server
An attacker can trigger a buffer overflow via Management Server of PAN-OS, in order to trigger a denial of service, and possibly to run code...
CERTFR-2020-AVI-197, CVE-2020-1990, PAN-SA-2020-0002, VIGILANCE-VUL-31984
PAN-OS: privilege escalation via XML Injection
An attacker can bypass restrictions via XML Injection of PAN-OS, in order to escalate his privileges...
CERTFR-2020-AVI-089, CVE-2020-1975, VIGILANCE-VUL-31596
Palo Alto PAN-OS: privilege escalation via Low Privileged Custom-role User
An attacker can bypass restrictions via Low Privileged Custom-role User of Palo Alto PAN-OS, in order to escalate his privileges...
CERTFR-2019-AVI-607, CVE-2019-17437, PAN-115697, PAN-SA-2019-0038, VIGILANCE-VUL-31072
PAN-OS: memory corruption via Interactive Session Rekeying
An attacker can trigger a memory corruption via Interactive Session Rekeying of PAN-OS, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-408, CVE-2019-1582, PAN-123700, PAN-SA-2019-0023, VIGILANCE-VUL-30133
PAN-OS: code execution via Mitigation Bypass
An attacker can use a vulnerability via Mitigation Bypass of PAN-OS, in order to run code...
CERTFR-2019-AVI-408, CVE-2019-1581, PAN-123564, PAN-SA-2019-0022, VIGILANCE-VUL-30132
Palo Alto PAN-OS: privilege escalation via Management API username/password
An attacker can bypass restrictions via Management API username/password of Palo Alto PAN-OS, in order to escalate his privileges...
CERTFR-2019-AVI-335, CVE-2019-1575, PAN-SA-2019-0019, VIGILANCE-VUL-29784
Palo Alto PAN-OS: privilege escalation via CLI Command Injection
An attacker can bypass restrictions via CLI Command Injection of Palo Alto PAN-OS, in order to escalate his privileges...
CERTFR-2019-AVI-335, CVE-2019-1576, PAN-SA-2019-0018, VIGILANCE-VUL-29783
PAN-OS: privilege escalation via Management Web Interface
An attacker can bypass restrictions via Management Web Interface of PAN-OS, in order to escalate his privileges...
CERTFR-2019-AVI-134, CVE-2019-1572, PAN-113675, PAN-SA-2019-0005, VIGILANCE-VUL-28898
OpenSSL 1.0.2: information disclosure via 0-byte Record Padding Oracle
An attacker can bypass access restrictions to data via 0-byte Record Padding Oracle of OpenSSL 1.0.2, in order to obtain sensitive information...
1170328, bulletinapr2019, bulletinjul2019, CERTFR-2019-AVI-080, CERTFR-2019-AVI-132, CERTFR-2019-AVI-214, CERTFR-2019-AVI-325, cpuapr2019, cpujan2020, cpujul2019, cpuoct2019, CVE-2019-1559, DLA-1701-1, DSA-2019-201, DSA-2020-062, DSA-2020-072, DSA-4400-1, FEDORA-2019-00c25b9379, ibm10876638, ibm10886237, ibm10886659, JSA10949, JSA10993, openSUSE-SU-2019:1076-1, openSUSE-SU-2019:1105-1, openSUSE-SU-2019:1173-1, openSUSE-SU-2019:1175-1, openSUSE-SU-2019:1432-1, openSUSE-SU-2019:1637-1, PAN-SA-2019-0039, RHBUG-1683804, RHBUG-1683807, RHSA-2019:2304-01, RHSA-2019:2471-01, SB10282, SSA:2019-057-01, SSB-439005, STORM-2019-001, SUSE-SU-2019:0572-1, SUSE-SU-2019:0600-1, SUSE-SU-2019:0658-1, SUSE-SU-2019:0803-1, SUSE-SU-2019:0818-1, SUSE-SU-2019:1362-1, SUSE-SU-2019:14091-1, SUSE-SU-2019:14092-1, SUSE-SU-2019:1553-1, SUSE-SU-2019:1608-1, SYMSA1490, TNS-2019-02, USN-3899-1, VIGILANCE-VUL-28600
Linux kernel: use after free via af_alg_release
An attacker can force the usage of a freed memory area via af_alg_release() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-131, CERTFR-2019-AVI-145, CERTFR-2019-AVI-335, CERTFR-2020-AVI-051, CVE-2019-8912, FEDORA-2019-16de0047d4, FEDORA-2019-7bdeed7fc5, openSUSE-SU-2019:1193-1, PAN-SA-2019-0017, RHSA-2020:0174-01, SUSE-SU-2019:0765-1, SUSE-SU-2019:0767-1, USN-3930-1, USN-3930-2, USN-3931-1, USN-3931-2, VIGILANCE-VUL-28540
Our database contains other pages. You can request a free trial to read them.

Display information about Palo Alto Firewall PA***: