Approved changes feed: RSS · Atom
cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:*:*:*:*:*:*:*
part: o version: 11.2.4 update: *
| Vendor | Palo Alto Networks (b3fb2ed8-9543-594b-b76a-18c6d89c012d) |
|---|---|
| Product | Pan Os (22d724b3-4126-5e5c-affc-aa08a1d46d00) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-0229 |
vulnerable | 2026-06-03 15:14:40.914226 |
PAN-OS: Denial of Service in Advanced DNS Security Feature
A denial-of-service (DoS) vulnerability in the Advanced DNS Security (ADNS) feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode.
Cloud NGFW and Prisma Access® are not impacted by this vulnerability.
Published: 2026-02-11T17:56:09.270Z
Updated: 2026-02-11T18:58:48.926Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-0228 |
not_vulnerable | 2026-06-03 15:14:40.895734 |
PAN-OS: Improper Validation of Terminal Server Agent Certificate
An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so.
Published: 2026-02-11T17:55:44.109Z
Updated: 2026-02-11T19:04:15.415Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-4614 |
not_vulnerable | 2026-06-03 15:01:48.128719 |
PAN-OS: Session Token Disclosure Vulnerability
An information disclosure vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to view session tokens of users authenticated to the firewall web UI. This may allow impersonation of users whose session tokens are leaked.
The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators.
Cloud NGFW and Prisma® Access are not affected by this vulnerability.
Published: 2025-10-09T18:13:22.016Z
Updated: 2025-10-09T19:15:06.182Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-4230 |
vulnerable | 2026-06-03 15:01:47.247194 |
PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI
A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI.
The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators.
Cloud NGFW and Prisma® Access are not affected by this vulnerability.
Published: 2025-06-12T23:30:15.781Z
Updated: 2026-02-26T17:50:39.127Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-4229 |
vulnerable | 2026-06-03 15:01:47.202452 |
PAN-OS: Traffic Information Disclosure Vulnerability
An information disclosure vulnerability in the SD-WAN feature of Palo Alto Networks PAN-OS® software enables an unauthorized user to view unencrypted data sent from the firewall through the SD-WAN interface. This requires the user to be able to intercept packets sent from the firewall.
Cloud NGFW and Prisma® Access are not affected by this vulnerability.
Published: 2025-06-13T05:42:38.482Z
Updated: 2025-06-13T19:04:49.865Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.