CVE-2025-2182 PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK) (Severity: LOW) August 13, 2025August 13, 2025
CVE-2025-0137 PAN-OS: Improper Neutralization of Input in the Management Web Interface (Severity: LOW) July 19, 2025July 11, 2025
CVE-2025-0123 PAN-OS: Information Disclosure Vulnerability in HTTP/2 Packet Captures (Severity: LOW) July 19, 2025July 11, 2025
CVE-2025-0133 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal (Severity: LOW) July 19, 2025July 9, 2025
CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability (Severity: LOW) July 19, 2025June 30, 2025
CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI (Severity: MEDIUM) July 19, 2025June 30, 2025
PAN-SA-2025-0003 Informational: PAN-OS BIOS and Bootloader Security Bulletin (Severity: INFORMATIONAL) July 19, 2025June 24, 2025
CVE-2025-0125 PAN-OS: Improper Neutralization of Input in the Management Web Interface (Severity: MEDIUM) July 19, 2025June 12, 2025
CVE-2025-0115 PAN-OS: Authenticated Admin File Read Vulnerability in PAN-OS CLI (Severity: MEDIUM) July 19, 2025June 12, 2025
CVE-2025-4231 PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface (Severity: MEDIUM) July 19, 2025June 11, 2025
CVE-2025-0130 PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted Packets (Severity: MEDIUM) July 19, 2025May 14, 2025
CVE-2024-2433 PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss (Severity: MEDIUM) March 13, 2024March 13, 2024
CVE-2024-0011 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication (Severity: MEDIUM) February 14, 2024February 14, 2024
CVE-2024-0008 PAN-OS: Insufficient Session Expiration Vulnerability in the Web Interface (Severity: MEDIUM) February 14, 2024February 14, 2024
CVE-2024-0010 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Portal (Severity: MEDIUM) February 14, 2024February 14, 2024
CVE-2024-0007 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Panorama Web Interface (Severity: MEDIUM) February 14, 2024February 14, 2024
CVE-2024-0009 PAN-OS: Improper IP Address Verification in GlobalProtect Gateway (Severity: MEDIUM) February 14, 2024February 14, 2024
CVE-2023-6790 PAN-OS: DOM-Based Cross-Site Scripting (XSS) Vulnerability in the Web Interface (Severity: HIGH) December 13, 2023December 13, 2023
CVE-2023-6791 PAN-OS: Plaintext Disclosure of External System Integration Credentials (Severity: MEDIUM) December 13, 2023December 13, 2023
CVE-2023-6794 PAN-OS: File Upload Vulnerability in the Web Interface (Severity: MEDIUM) December 13, 2023December 13, 2023