VYPR

Prisma Access Agent

by Paloaltonetworks

CVEs (74)

  • CVE-2022-0028HigKEVAug 10, 2022
    risk 0.68cvss 8.6epss 0.02

    A PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct reflected and amplified TCP denial-of-service (RDoS) attacks. The DoS attack would appear to originate from a Palo Alto Networks PA-Series (hardware), VM-Series (virtual) and CN-Series…

  • CVE-2021-3064CriNov 10, 2021
    risk 0.65cvss 9.8epss 0.19

    A memory corruption vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to disrupt system processes and potentially execute arbitrary code with root privileges. The attacker must have…

  • CVE-2023-6790HigDec 13, 2023
    risk 0.57cvss 8.8epss 0.01

    A DOM-Based cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to execute a JavaScript payload in the context of an administrator’s browser when they view a specifically crafted link to the PAN-OS web interface.

  • CVE-2021-3058HigNov 10, 2021
    risk 0.57cvss 8.8epss 0.02

    An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permissions to use XML API the ability to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than…

  • CVE-2021-3056HigNov 10, 2021
    risk 0.57cvss 8.8epss 0.01

    A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN enables an authenticated attacker to execute arbitrary code with root user privileges during SAML authentication. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20;…

  • CVE-2021-3060HigNov 10, 2021
    risk 0.55cvss 8.1epss 0.34

    An OS command injection vulnerability in the Simple Certificate Enrollment Protocol (SCEP) feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The…

  • CVE-2022-0030HigOct 12, 2022
    risk 0.53cvss 8.1epss 0.01

    An authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface allows a network-based attacker with specific knowledge of the target firewall or Panorama appliance to impersonate an existing PAN-OS administrator and perform privileged actions.

  • CVE-2021-3062HigNov 10, 2021
    risk 0.53cvss 8.1epss 0.01

    An improper access control vulnerability in PAN-OS software enables an attacker with authenticated access to GlobalProtect portals and gateways to connect to the EC2 instance metadata endpoint for VM-Series firewalls hosted on Amazon AWS. Exploitation of this vulnerability…

  • CVE-2021-3059HigNov 10, 2021
    risk 0.53cvss 8.1epss 0.02

    An OS command injection vulnerability in the Palo Alto Networks PAN-OS management interface exists when performing dynamic updates. This vulnerability enables a man-in-the-middle attacker to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1…

  • CVE-2025-0130HigMay 14, 2025
    risk 0.49cvss 7.5epss 0.00

    A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful…

  • CVE-2021-3063HigNov 10, 2021
    risk 0.49cvss 7.5epss 0.01

    An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to send specifically crafted traffic to a GlobalProtect interface that causes the service…

  • CVE-2025-4619MedNov 13, 2025
    risk 0.43cvss epss 0.01

    A denial-of-service (DoS) vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to reboot a firewall by sending a specially crafted packet through the dataplane. Repeated attempts to initiate a reboot causes the firewall to enter maintenance…

  • CVE-2023-0007MedMay 10, 2023
    risk 0.42cvss 6.5epss 0.00

    A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances enables an authenticated read-write administrator to store a JavaScript payload in the web interface that will execute in the context of another administrator’s browser when…

  • CVE-2023-0004MedApr 12, 2023
    risk 0.42cvss 6.5epss 0.01

    A local file deletion vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to delete files from the local file system with elevated privileges. These files can include logs and system components that impact the integrity and availability of…

  • CVE-2022-0011MedFeb 10, 2022
    risk 0.42cvss 6.5epss 0.01

    PAN-OS software provides options to exclude specific websites from URL category enforcement and those websites are blocked or allowed (depending on your rules) regardless of their associated URL category. This is done by creating a custom URL category list or by using an…

  • CVE-2021-3061MedNov 10, 2021
    risk 0.42cvss 6.4epss 0.01

    An OS command injection vulnerability in the Palo Alto Networks PAN-OS command line interface (CLI) enables an authenticated administrator with access to the CLI to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS…

  • CVE-2026-0271MedJun 10, 2026
    risk 0.38cvss epss 0.00

    A privilege escalation (PE) vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices enables a local user to execute code with elevated privileges. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS.

  • CVE-2026-0246MedMay 13, 2026
    risk 0.38cvss epss 0.00

    A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. This allows the user to…

  • CVE-2022-0023MedApr 13, 2022
    risk 0.38cvss 5.9epss 0.01

    An improper handling of exceptional conditions vulnerability exists in the DNS proxy feature of Palo Alto Networks PAN-OS software that enables a meddler-in-the-middle (MITM) to send specifically crafted traffic to the firewall that causes the service to restart unexpectedly.…

  • CVE-2023-6795MedDec 13, 2023
    risk 0.36cvss 5.5epss 0.01

    An OS command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.

Page 1 of 4