Show filters
214 Total Results
Displaying 181-190 of 214
Sort by:
Attacker Value
Unknown

CVE-2017-7217

Disclosure Date: April 14, 2017 (last updated November 26, 2024)
The Management Web Interface in Palo Alto Networks PAN-OS before 7.0.14 and 7.1.x before 7.1.9 allows remote attackers to write to export files via unspecified parameters.
0
0
Attacker Value
Unknown

CVE-2017-7218

Disclosure Date: April 14, 2017 (last updated November 26, 2024)
The Management Web Interface in Palo Alto Networks PAN-OS before 7.1.9 allows remote authenticated users to gain privileges via unspecified request parameters.
0
0
Attacker Value
Unknown

CVE-2017-5584

Disclosure Date: March 15, 2017 (last updated November 26, 2024)
Cross-site scripting (XSS) vulnerability in the Management Web Interface in Palo Alto Networks PAN-OS 5.1, 6.x before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2017-5583

Disclosure Date: March 15, 2017 (last updated November 26, 2024)
The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated users to read arbitrary files via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2016-9151

Disclosure Date: November 19, 2016 (last updated November 25, 2024)
Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 allows local users to gain privileges via crafted values of unspecified environment variables.
0
0
Attacker Value
Unknown

CVE-2016-9150

Disclosure Date: November 19, 2016 (last updated November 25, 2024)
Buffer overflow in the management web interface in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 allows remote attackers to execute arbitrary code via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2016-9149

Disclosure Date: November 19, 2016 (last updated November 25, 2024)
The Addresses Object parser in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 mishandles single quote characters, which allows remote authenticated users to conduct XPath injection attacks via a crafted string.
0
0
Attacker Value
Unknown

CVE-2016-1712

Disclosure Date: August 02, 2016 (last updated November 25, 2024)
Palo Alto Networks PAN-OS before 5.0.19, 5.1.x before 5.1.12, 6.0.x before 6.0.14, 6.1.x before 6.1.12, and 7.0.x before 7.0.8 might allow local users to gain privileges by leveraging improper sanitization of the root_reboot local invocation.
0
0
Attacker Value
Unknown

CVE-2016-2219

Disclosure Date: July 12, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in the management interface in Palo Alto Networks PAN-OS 7.x before 7.0.8 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2016-4971

Disclosure Date: June 30, 2016 (last updated November 25, 2024)
GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
View More Topics  < Previous  Next >