Home  :  Support   :  Security Advisories

Security Advisories

This section provides a listing of all security vulnerabilities identified in currently supported Palo Alto Networks products. Each vulnerability is given a criticality rating and an updated status on any updates or mitigations regarding each discovered vulnerablity. Each vulnerability listing also provides a list of the versions of PAN OS the vulnerability is known to affect.

Please disclose vulnerability discoveries to the Palo Alto Networks Product Security Incident Response Team (PSIRT)

Security Advisory Listing

 Title  ID  Severity  Products Affected  First  Published  Last  Updated
Detail
NTP Vulnerability
PAN-SA-2017-0022 Low PAN-OS 6.1, PAN-OS 7.0, PAN-OS 7.1, PAN-OS 8.0.3 and earlier 07/27/2017 08/07/2017
Detail
Vulnerability in the PAN-OS DNS Proxy
PAN-SA-2017-0021 Critical PAN-OS 6.1.17 and earlier, PAN-OS 7.0.15 and earlier, PAN-OS 7.1.9 and earlier, PAN-OS 8.0.2 and earlier 07/20/2017 07/20/2017
Detail
Cross-Site Scripting in PAN-OS
PAN-SA-2017-0020 Medium PAN-OS 6.1.17 and earlier, PAN-OS 7.0.15 and earlier, PAN-OS 7.1.10 and earlier, PAN-OS 8.0.2 and earlier 07/20/2017 07/20/2017
Detail
Cross-Site Scripting in the Management Web Interface
PAN-SA-2017-0019 Medium PAN-OS 6.1.17 and earlier, PAN-OS 7.0.15 and earlier, PAN-OS 7.1.10 and earlier, PAN-OS 8.0.2 and earlier 07/20/2017 07/20/2017
Detail
Kernel Vulnerability
PAN-SA-2017-0018 Medium PAN-OS 6.1.17 and earlier, PAN-OS 7.0, PAN-OS 7.1.10 and earlier, PAN-OS 8.0.2 and earlier 06/19/2017 07/20/2017
Detail
OpenSSL Vulnerability
PAN-SA-2017-0017 Medium PAN-OS 6.1.17 and earlier, PAN-OS 7.0.15 and earlier, PAN-OS 7.1.10 and earlier 06/06/2017 07/20/2017
Detail
Kernel Vulnerability
PAN-SA-2017-0015 Medium PAN-OS 6.1, PAN-OS 7.0.15 and earlier, PAN-OS 7.1.9 and earlier 05/22/2017 06/19/2017
Detail
WGET Vulnerability
PAN-SA-2017-0016 Low PAN-OS 6.1.16 and earlier, PAN-OS 7.0.14 and earlier, PAN-OS 7.1.9 and earlier, PAN-OS 8.0 05/22/2017 05/22/2017
Detail
OpenSSL Vulnerability
PAN-SA-2017-0012 Medium PAN-OS 6.1, PAN-OS 7.0.14 and earlier, PAN-OS 7.1, PAN-OS 8.0 04/20/2017 05/22/2017
Detail
Brute force attack on the PAN-OS GlobalProtect external interface
PAN-SA-2017-0014 Medium PAN-OS 6.1.16 and earlier, PAN-OS 7.0.14 and earlier, PAN-OS 7.1.8 and earlier, PAN-OS 8.0.1 and earlier 04/28/2017 04/28/2017
Detail
Information Disclosure in the Management Web Interface
PAN-SA-2017-0013 Medium PAN-OS 6.1.16 and earlier, PAN-OS 7.0.14 and earlier, PAN-OS 7.1.8 and earlier 04/28/2017 04/28/2017
Detail
Kernel Vulnerability
PAN-SA-2017-0003 High PAN-OS 5.1, PAN-OS 6.0, PAN-OS 6.1, PAN-OS 7.0.13, PAN-OS 7.1.7 and earlier 02/21/2017 04/28/2017
Detail
Cross-Site Scripting in PAN-OS
PAN-SA-2017-0011 Medium PAN-OS 7.0.14 and earlier 04/20/2017 04/20/2017
Detail
Information Disclosure in the Management Web Interface
PAN-SA-2017-0010 Medium PAN-OS 7.1.8 and earlier 04/10/2017 04/10/2017
Detail
Local Privilege Escalation in the Management Web Interface
PAN-SA-2017-0009 Medium PAN-OS 7.1.8 and earlier 04/10/2017 04/10/2017
Detail
Tampering of temporary export files in the Management Web Interface
PAN-SA-2017-0008 Low PAN-OS 7.0.13 and earlier, PAN-OS 7.1.8 and earlier 04/10/2017 04/10/2017
Detail
Temporary DoS for Traps Agent
PAN-SA-2017-0007 Medium Traps ESM Console 3.4.3 and earlier 04/07/2017 04/07/2017
Detail
Information Disclosure in Terminal Services Agent
PAN-SA-2017-0006 Medium TS agent 6.0, TS agent 7.0, and TS agent 8.0. 03/15/2017 03/15/2017
Detail
Information Disclosure in the Management Web Interface
PAN-SA-2017-0005 Low PAN-OS 6.1.15 and earlier, PAN-OS 7.0.12 and earlier, PAN-OS 7.1.7 and earlier 02/21/2017 02/21/2017
Detail
Cross-Site Scripting in the Management Web Interface
PAN-SA-2017-0004 Medium PAN-OS 5.1, PAN-OS 6.0, PAN-OS 6.1.15 and earlier, PAN-OS 7.0.12 and earlier, PAN-OS 7.1.7 and earlier 02/21/2017 02/21/2017
Detail
Spoofing in Terminal Services Agent
PAN-SA-2017-0002 Low Terminal Services Agent 6.0; Terminal Services Agent 7.0.6 and earlier 01/26/2017 01/26/2017
Detail
Local Privilege Escalation in Terminal Services Agent
PAN-SA-2017-0001 Medium Terminal Services Agent 6.0; Terminal Services Agent 7.0.6 and earlier 01/26/2017 01/26/2017
Detail
Web interface denial of service
PAN-SA-2016-0027 High PAN-OS 5.0.19 and earlier; PAN-OS 5.1.12 and earlier; PAN-OS 6.0.14 and earlier; PAN-OS 6.1.14 and earlier; PAN-OS 7.0.10 and earlier; PAN-OS 7.1.5 and earlier 10/11/2016 12/22/2016
Detail
XPath Injection
PAN-SA-2016-0037 Low PAN-OS 5.0.19 and earlier; PAN-OS 5.1.12 and earlier; PAN-OS 6.0.14 and earlier; PAN-OS 6.1.14 and earlier; PAN-OS 7.0.10 and earlier; PAN-OS 7.1.5 and earlier 11/17/2016 11/17/2016
Detail
OpenSSH Vulnerability
PAN-SA-2016-0036 Low PAN-OS 5.0.X and earlier; PAN-OS 5.1.X and earlier; PAN-OS 6.0.14 and earlier; PAN-OS 6.1.14 and earlier; PAN-OS 7.0.10 and earlier; PAN-OS 7.1.5 and earlier 11/17/2016 11/17/2016