The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of PaloAlto PAN-OS

Linux kernel: use after free via af_alg_release
An attacker can force the usage of a freed memory area via af_alg_release() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-131, CERTFR-2019-AVI-145, CERTFR-2019-AVI-335, CERTFR-2020-AVI-051, CVE-2019-8912, FEDORA-2019-16de0047d4, FEDORA-2019-7bdeed7fc5, openSUSE-SU-2019:1193-1, PAN-SA-2019-0017, RHSA-2020:0174-01, SUSE-SU-2019:0765-1, SUSE-SU-2019:0767-1, USN-3930-1, USN-3930-2, USN-3931-1, USN-3931-2, VIGILANCE-VUL-28540
Palo Alto PAN-OS: Cross Site Scripting via Management Web Interface
An attacker can trigger a Cross Site Scripting via Management Web Interface of Palo Alto PAN-OS, in order to run JavaScript code in the context of the web site...
CVE-2019-1566, PAN-SA-2019-0002, VIGILANCE-VUL-28362
Palo Alto PAN-OS: Cross Site Scripting via External Dynamic Lists
An attacker can trigger a Cross Site Scripting via External Dynamic Lists of Palo Alto PAN-OS, in order to run JavaScript code in the context of the web site...
CVE-2019-1565, PAN-SA-2019-0001, VIGILANCE-VUL-28361
OpenSSH scp, PuTTY PSCP: spoofing via Scp Client ANSI Codes File Hidding
An attacker can spoof displayed filenames on the scp client of OpenSSH and PuTTY, in order to deceive the victim...
bulletinjan2019, CVE-2019-6109, DLA-1728-1, DSA-2019-117, DSA-4387-1, DSA-4387-2, FEDORA-2019-0f4190cdb0, ibm10731015, openSUSE-SU-2019:0091-1, openSUSE-SU-2019:0093-1, openSUSE-SU-2019:0307-1, openSUSE-SU-2019:1602-1, PAN-100415, PAN-100734, PAN-100855, PAN-102682, PAN-102688, PAN-108992, PAN-117955, PAN-118226, PAN-118957, PAN-119810, PAN-120397, PAN-121058, PAN-123391, PAN-123661, PAN-124039, PAN-125122, PAN-126362, PAN-127118, PAN-128248, PAN-130361, PAN-133527, PAN-82052, PAN-SA-2020-0002, RHSA-2019:3702-01, SUSE-SU-2019:0125-1, SUSE-SU-2019:0126-1, SUSE-SU-2019:0132-1, SUSE-SU-2019:0496-1, SUSE-SU-2019:0941-1, SUSE-SU-2019:13931-1, SUSE-SU-2019:14016-1, SUSE-SU-2019:14030-1, SUSE-SU-2019:1524-1, USN-3885-1, USN-3885-2, VIGILANCE-VUL-28261
OpenSSH, WinSCP: file overwrite via Scp Client Object Name Not Validated
An attacker can send an unexpected object to the scp client of OpeSSH/WinSCP, in order to overwrite files in the current directory of the scp client...
1675, bulletinjan2019, CERTFR-2019-AVI-179, CVE-2018-20684, CVE-2019-6111, DLA-1728-1, DSA-2019-117, DSA-4387-1, DSA-4387-2, FEDORA-2019-0f4190cdb0, FreeBSD-EN-19:10.scp, ibm10731015, K11315080, K21350967, K42531048, openSUSE-SU-2019:0091-1, openSUSE-SU-2019:0093-1, openSUSE-SU-2019:0307-1, openSUSE-SU-2019:1602-1, PAN-100415, PAN-100734, PAN-100855, PAN-102682, PAN-102688, PAN-108992, PAN-117955, PAN-118226, PAN-118957, PAN-119810, PAN-120397, PAN-121058, PAN-123391, PAN-123661, PAN-124039, PAN-125122, PAN-126362, PAN-127118, PAN-128248, PAN-130361, PAN-133527, PAN-82052, PAN-SA-2020-0002, RHSA-2019:3702-01, SUSE-SU-2019:0125-1, SUSE-SU-2019:0126-1, SUSE-SU-2019:0132-1, SUSE-SU-2019:0496-1, SUSE-SU-2019:0941-1, SUSE-SU-2019:13931-1, SUSE-SU-2019:14016-1, SUSE-SU-2019:14030-1, SUSE-SU-2019:1524-1, USN-3885-1, USN-3885-2, VIGILANCE-VUL-28245
OpenSSH: privilege escalation via Scp Client Empty Dirname Permission Change
An attacker can bypass restrictions via Scp Client Empty Dirname Permission Change of OpenSSH, in order to escalate his privileges...
bulletinjan2019, cpuapr2019, CVE-2018-20685, DLA-1728-1, DSA-4387-1, DSA-4387-2, FEDORA-2019-9eb0ae6296, FEDORA-2019-f6ff819834, ibm10731015, K11315080, K21350967, K42531048, openSUSE-SU-2019:0091-1, openSUSE-SU-2019:0093-1, PAN-100415, PAN-100734, PAN-100855, PAN-102682, PAN-102688, PAN-108992, PAN-117955, PAN-118226, PAN-118957, PAN-119810, PAN-120397, PAN-121058, PAN-123391, PAN-123661, PAN-124039, PAN-125122, PAN-126362, PAN-127118, PAN-128248, PAN-130361, PAN-133527, PAN-82052, PAN-SA-2020-0002, RHSA-2019:3702-01, SUSE-SU-2019:0125-1, SUSE-SU-2019:0126-1, SUSE-SU-2019:0132-1, SUSE-SU-2019:13931-1, USN-3885-1, USN-3885-2, VIGILANCE-VUL-28244
Palo Alto PAN-OS: Cross Site Scripting via GlobalProtect Portal Login
An attacker can trigger a Cross Site Scripting via GlobalProtect Portal Login of Palo Alto PAN-OS, in order to run JavaScript code in the context of the web site...
CVE-2018-10141, PAN-99830, PAN-SA-2018-0014, VIGILANCE-VUL-27494
Net-SNMP: denial of service via GetNext PDU Multiple Varbinds
An attacker can generate a fatal error via GetNext PDU Multiple Varbinds of Net-SNMP, in order to trigger a denial of service...
bulletinoct2018, CVE-2018-18065, DLA-1540-1, DSA-4314-1, FEDORA-2018-042156f164, NTAP-20181107-0001, openSUSE-SU-2018:3381-1, openSUSE-SU-2018:3508-1, PAN-SA-2019-0007, SSA-978220, SUSE-SU-2018:3319-1, SUSE-SU-2018:3333-1, SUSE-SU-2018:3447-1, USN-3792-1, USN-3792-2, USN-3792-3, VIGILANCE-VUL-27441
Linux kernel: integer overflow via create_elf_tables
An attacker can generate an integer overflow via create_elf_tables() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
CERTFR-2018-AVI-457, CERTFR-2018-AVI-459, CERTFR-2018-AVI-460, CERTFR-2018-AVI-462, CERTFR-2018-AVI-478, CERTFR-2018-AVI-480, CERTFR-2018-AVI-567, CERTFR-2019-AVI-188, CERTFR-2019-AVI-242, CVE-2018-14634, DLA-1529-1, JSA10917, K20934447, PAN-SA-2019-0006, RHSA-2018:2748-01, RHSA-2018:2763-01, RHSA-2018:2846-01, RHSA-2018:2924-01, RHSA-2018:2925-01, RHSA-2018:2933-01, RHSA-2018:3540-01, RHSA-2018:3586-01, RHSA-2018:3590-01, RHSA-2018:3591-01, RHSA-2018:3643-01, SUSE-SU-2018:2879-1, SUSE-SU-2018:2907-1, SUSE-SU-2018:2908-1, SUSE-SU-2018:2908-2, SUSE-SU-2018:3083-1, SUSE-SU-2018:3088-1, USN-3775-1, USN-3775-2, USN-3779-1, VIGILANCE-VUL-27320
PAN-OS: Cross Site Scripting via GlobalProtect Response Page
An attacker can trigger a Cross Site Scripting via GlobalProtect Response Page of PAN-OS, in order to run JavaScript code in the context of the web site...
CVE-2018-10139, PAN-84836, PAN-SA-2018-0009, VIGILANCE-VUL-27035
Our database contains other pages. You can request a free trial to read them.

Display information about PaloAlto PAN-OS: