Palo Alto 漏洞

时间轴

类型

Firewall Software	191
Not Defined	60
Cloud Software	4

产品

Palo Alto PAN-OS	174
Palo Alto Networks PAN-OS	16
Palo Alto GlobalProtect App	14
Palo Alto Cortex XDR Agent	14
Palo Alto Cortex XSOAR	9

修正

Official Fix	214
Temporary Fix	0
Workaround	0
Unavailable	1
Not Defined	40

易受攻击性

High	7
Functional	0
Proof-of-Concept	18
Unproven	1
Not Defined	229

访问向量

Not Defined	0
Physical	1
Local	39
Adjacent	2
Network	213

身份验证

Not Defined	0
High	39
Low	119
None	97

用户交互

Not Defined	0
Required	44
None	211

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	7
≤4	23
≤5	44
≤6	56
≤7	45
≤8	45
≤9	25
≤10	10

CVSSv3 Temp

≤1	0
≤2	0
≤3	8
≤4	27
≤5	50
≤6	48
≤7	59
≤8	33
≤9	20
≤10	10

VulDB

≤1	0
≤2	2
≤3	14
≤4	33
≤5	50
≤6	52
≤7	30
≤8	44
≤9	20
≤10	10

NVD

≤1	0
≤2	0
≤3	1
≤4	4
≤5	14
≤6	19
≤7	28
≤8	36
≤9	13
≤10	16

CNA

≤1	0
≤2	0
≤3	1
≤4	1
≤5	14
≤6	13
≤7	21
≤8	10
≤9	10
≤10	4

供应商

≤1	0
≤2	0
≤3	1
≤4	0
≤5	1
≤6	0
≤7	0
≤8	0
≤9	0
≤10	1

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

零日攻击

<1k	62
<2k	89
<5k	101
<10k	0
<25k	1
<50k	0
<100k	1
≥100k	1

本日攻击

<1k	248
<2k	4
<5k	1
<10k	0
<25k	2
<50k	0
<100k	0
≥100k	0

攻击市场容量

🔴 CTI 活动

Affected Products (24): Cloud NGFW (12), Cortex XDR Agent (14), Cortex XSOAR (9), Demisto (1), Expedition Migration Tool (2), Firewall (1), GlobalProtect (1), Global Protect Agent (2), GlobalProtect Agent (3), GlobalProtect App (14), Global Protected Gateway (1), MineMeld (1), NetConnect (1), Network Traps ESM Console (1), Networks Global Protect Agent (1), Networks Twistlock (1), PAN-OS (190), Prisma Access (12), Prisma Cloud Compute (3), Terminal Services Agent (3), Traps (2), Traps Server (1), VM Series Firewall for Microsoft Azure (1), Web Interface (2)

已发布	Base	Temp	漏洞	Prod	易	修正	EPSS	CTI	CVE
2024-04-12	8.9	8.7	Palo Alto Networks PAN-OS GlobalProtect 权限升级	Firewall Software	High	Official Fix	0.93657	0.69	CVE-2024-3400
2024-04-10	4.5	4.4	Palo Alto Networks PAN-OS 弱加密	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-3387
2024-04-10	4.8	4.7	Palo Alto Networks PAN-OS GlobalProtect Gateway 权限升级	Firewall Software	Not Defined	Official Fix	0.00043	0.09	CVE-2024-3388
2024-04-10	5.3	5.2	Palo Alto Networks PAN-OS 未知漏洞	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-3386
2024-04-10	7.5	7.3	Palo Alto Networks PAN-OS Packets 拒绝服务	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-3382
2024-04-10	7.5	7.3	Palo Alto Networks PAN-OS Packet 拒绝服务	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-3385
2024-04-10	6.1	6.0	Palo Alto Networks PAN-OS Cloud Identity Engine 未知漏洞	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-3383
2024-04-10	7.5	7.3	Palo Alto Networks PAN-OS Windows New Technology LAN Manager Packet 拒绝服务	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-3384
2024-03-13	4.5	4.4	Palo Alto GlobalProtect App 权限升级	未知	Not Defined	Official Fix	0.00043	0.02	CVE-2024-2432
2024-03-13	5.4	5.3	Palo Alto GlobalProtect App 权限升级	未知	Not Defined	Official Fix	0.00043	0.03	CVE-2024-2431
2024-03-13	4.3	4.2	Palo Alto PAN-OS Web Interface 权限升级	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-2433
2024-02-14	3.9	3.8	Palo Alto PAN-OS/Prisma Access/Cloud NGFW 跨网站脚本	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-0011
2024-02-14	4.3	4.2	Palo Alto PAN-OS/Prisma Access/Cloud NGFW GlobalProtect Portal 跨网站脚本	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-0010
2024-02-14	5.1	5.1	Palo Alto PAN-OS/Prisma Access/Cloud NGFW Management Interface 弱身份验证	Firewall Software	Not Defined	Official Fix	0.00043	0.03	CVE-2024-0008
2024-02-14	6.8	6.7	Palo Alto PAN-OS/Prisma Access/Cloud NGFW VPN Connection Remote Code Execution	Firewall Software	Not Defined	Official Fix	0.00043	0.09	CVE-2024-0009
2024-02-14	4.6	4.5	Palo Alto Networks PAN-OS/Prisma Access/Cloud NGFW Web Interface 跨网站脚本	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-0007
2023-12-13	3.8	3.8	Palo Alto Networks PAN-OS/Prisma Access/Cloud NGFW Web Interface 跨网站脚本	Firewall Software	Not Defined	Official Fix	0.00045	0.04	CVE-2023-6789
2023-12-13	6.4	6.3	Palo Alto Networks PAN-OS/Prisma Access/Cloud NGFW Link 跨网站脚本	Firewall Software	Not Defined	Official Fix	0.00059	0.03	CVE-2023-6790
2023-12-13	2.7	2.6	Palo Alto Networks PAN-OS/Prisma Access/Cloud NGFW XML API Key 权限升级	Firewall Software	Not Defined	Official Fix	0.00044	0.03	CVE-2023-6793
2023-12-13	5.0	4.9	Palo Alto Networks PAN-OS/Prisma Access/Cloud NGFW Web Interface 权限升级	Firewall Software	Not Defined	Official Fix	0.00049	0.04	CVE-2023-6794
2023-12-13	5.5	5.4	Palo Alto Networks PAN-OS/Prisma Access/Cloud NGFW XML API 权限升级	Firewall Software	Not Defined	Official Fix	0.00049	0.04	CVE-2023-6792
2023-12-13	5.0	4.9	Palo Alto Networks PAN-OS/Prisma Access/Cloud NGFW 权限升级	Firewall Software	Not Defined	Official Fix	0.00049	0.04	CVE-2023-6795
2023-12-13	3.8	3.7	Palo Alto Networks PAN-OS/Prisma Access/Cloud NGFW Web Interface 信息公开	Firewall Software	Not Defined	Official Fix	0.00049	0.00	CVE-2023-6791
2023-11-08	6.4	6.2	Palo Alto Cortex XSOAR 权限升级	未知	Not Defined	Official Fix	0.00042	0.00	CVE-2023-3282
2023-09-14	4.4	4.4	Palo Alto Cortex XDR Agent 权限升级	未知	Not Defined	Not Defined	0.00042	0.04	CVE-2023-3280

230 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 230 results.

◂ 上一步一览下一步 ▸

Might our Artificial Intelligence support you?

Check our Alexa App!