Palo Alto Luki w zabezpieczeniach

Oś czasu

Rodzaj

Firewall Software	198
Not Defined	70
Cloud Software	5

Produkt

Palo Alto PAN-OS	175
Palo Alto Networks PAN-OS	22
Palo Alto GlobalProtect App	15
Palo Alto Networks Cloud NGFW	14
Palo Alto Networks Prisma Access	14

Przeciwdziałanie

Official Fix	232
Temporary Fix	0
Workaround	0
Unavailable	1
Not Defined	40

Wykorzystywanie

High	9
Functional	0
Proof-of-Concept	19
Unproven	1
Not Defined	244

Wektor dostępu

Not Defined	0
Physical	2
Local	49
Adjacent	2
Network	220

Uwierzytelnianie

Not Defined	0
High	46
Low	127
None	100

Interakcja z użytkownikiem

Not Defined	0
Required	45
None	228

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	9
≤4	28
≤5	45
≤6	58
≤7	48
≤8	49
≤9	25
≤10	11

CVSSv3 Temp

≤1	0
≤2	0
≤3	10
≤4	33
≤5	51
≤6	51
≤7	62
≤8	35
≤9	20
≤10	11

VulDB

≤1	0
≤2	2
≤3	17
≤4	37
≤5	52
≤6	55
≤7	32
≤8	47
≤9	20
≤10	11

NVD

≤1	0
≤2	0
≤3	1
≤4	4
≤5	15
≤6	19
≤7	28
≤8	37
≤9	13
≤10	17

CNA

≤1	0
≤2	0
≤3	1
≤4	2
≤5	15
≤6	14
≤7	23
≤8	12
≤9	10
≤10	4

Sprzedawca

≤1	0
≤2	0
≤3	1
≤4	0
≤5	1
≤6	0
≤7	0
≤8	0
≤9	0
≤10	1

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	75
<2k	90
<5k	105
<10k	0
<25k	1
<50k	0
<100k	1
≥100k	1

Wykorzystaj dzisiaj

<1k	266
<2k	5
<5k	0
<10k	0
<25k	1
<50k	1
<100k	0
≥100k	0

Wykorzystaj wielkość rynku

🔴 CTI Zajęcia

Affected Products (27): ActiveMQ Content Pack (1), Cloud NGFW (19), Cortex XDR Agent (19), Cortex XSOAR (9), Cortex XSOAR CommonScripts (1), Demisto (1), Expedition (1), Expedition Migration Tool (2), Firewall (1), GlobalProtect (1), Global Protect Agent (2), GlobalProtect Agent (3), GlobalProtect App (17), Global Protected Gateway (1), MineMeld (1), NetConnect (1), Network Traps ESM Console (1), Networks Global Protect Agent (1), Networks Twistlock (1), PAN-OS (197), Prisma Access (19), Prisma Cloud Compute (4), Terminal Services Agent (3), Traps (2), Traps Server (1), VM Series Firewall for Microsoft Azure (1), Web Interface (2)

Opublikowano	Base	Temp	Słaby punkt	Prod	Wyk	Prz	EPSS	CTI	CVE
2024-09-11	3.7	3.6	Palo Alto Networks ActiveMQ Content Pack weak encryption	Nieznany	Not Defined	Official Fix	0.00043	0.03	CVE-2024-8689
2024-09-11	4.2	4.0	Palo Alto Networks Cortex XDR Agent Detection Mechanism Local Privilege Escalation	Nieznany	Not Defined	Official Fix	0.00043	0.05	CVE-2024-8690
2024-09-11	5.3	5.1	Palo Alto Networks PAN-OS/GlobalProtect App/Cloud NGFW/Prisma Access Configuration Local Privilege Escalation	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-8687
2024-09-11	7.2	6.9	Palo Alto Networks PAN-OS/Cloud NGFW/Prisma Access privilege escalation	Firewall Software	Not Defined	Official Fix	0.00043	0.03	CVE-2024-8686
2024-09-11	6.3	6.0	Palo Alto Networks PAN-OS/Cloud NGFW/Prisma Access GlobalProtect Portal privilege escalation	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-8691
2024-09-11	2.3	2.2	Palo Alto Networks PAN-OS/Cloud NGFW/Prisma Access Command Line Interface information disclosure	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-8688
2024-08-14	7.8	7.6	Palo Alto GlobalProtect App privilege escalation	Nieznany	Not Defined	Official Fix	0.00043	0.00	CVE-2024-5915
2024-08-14	7.7	7.6	Palo Alto Cortex XSOAR CommonScripts privilege escalation	Nieznany	Not Defined	Official Fix	0.00090	0.02	CVE-2024-5914
2024-08-14	3.3	3.3	Palo Alto PAN-OS/Cloud NGFW/Prisma Access information disclosure	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-5916
2024-07-10	6.2	6.0	Palo Alto Networks PAN-OS/Cloud NGFW/Prisma Access Physical File System privilege escalation	Firewall Software	Not Defined	Official Fix	0.00043	0.03	CVE-2024-5913
2024-07-10	5.3	5.1	Palo Alto Networks Cortex XDR Agent weak authentication	Nieznany	Not Defined	Official Fix	0.00043	0.02	CVE-2024-5912
2024-07-10	7.2	6.9	Palo Alto Networks PAN-OS/Cloud NGFW/Prisma Access privilege escalation	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-5911
2024-07-10	9.8	9.4	Palo Alto Networks Expedition weak authentication	Nieznany	Not Defined	Official Fix	0.00043	0.04	CVE-2024-5910
2024-06-12	3.3	3.2	Palo Alto Networks GlobalProtect App information disclosure	Nieznany	Not Defined	Official Fix	0.00087	0.04	CVE-2024-5908
2024-06-12	2.4	2.3	Palo Alto Networks Prisma Cloud Compute Web Interface cross site scripting	Cloud Software	Not Defined	Official Fix	0.00045	0.03	CVE-2024-5906
2024-06-12	3.3	3.2	Palo Alto Networks Cortex XDR Agent privilege escalation	Nieznany	Not Defined	Official Fix	0.00043	0.04	CVE-2024-5909
2024-06-12	4.5	4.3	Palo Alto Networks Cortex XDR Agent privilege escalation	Nieznany	Not Defined	Official Fix	0.00043	0.00	CVE-2024-5907
2024-06-12	3.3	3.2	Palo Alto Networks Cortex XDR Agent privilege escalation	Nieznany	Not Defined	Official Fix	0.00043	0.03	CVE-2024-5905
2024-04-12	8.9	8.7	Palo Alto Networks PAN-OS GlobalProtect privilege escalation	Firewall Software	High	Official Fix	0.96464	0.00	CVE-2024-3400
2024-04-10	4.5	4.4	Palo Alto Networks PAN-OS weak encryption	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-3387
2024-04-10	4.8	4.7	Palo Alto Networks PAN-OS GlobalProtect Gateway privilege escalation	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-3388
2024-04-10	5.3	5.2	Palo Alto Networks PAN-OS	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-3386
2024-04-10	7.5	7.3	Palo Alto Networks PAN-OS Packets denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-3382
2024-04-10	7.5	7.3	Palo Alto Networks PAN-OS Packet denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.06	CVE-2024-3385
2024-04-10	6.1	6.0	Palo Alto Networks PAN-OS Cloud Identity Engine	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-3383

248 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 248 results.

◂ PoprzedniPrzeglądKolejny ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!