Palo Alto

NewsSecurity Vulnerabilities

Critical Vulnerability in Palo Alto PAN-OS (CVE-2026-0300)

– Palo Alto has published a security advisory addressing a critical vulnerability affecting PAN-OS. This vulnerability allows an unauthenticated attacker to execute arbitrary code with root privileges.

Read More
NewsSecurity Vulnerabilities

Palo Alto Improper Neutralization of Input in the Management Web Interface (CVE-2025-4615)

– An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands.

Read More
NewsSecurity Vulnerabilities

Palo Alto User-ID Credential Agent: Cleartext Exposure of Service Account password (CVE-2025-4235)

– An information exposure vulnerability in the Palo Alto Networks User-ID Credential Agent (Windows-based) can expose the service account password under specific non-default configurations.

Read More
NewsSecurity Vulnerabilities

Palo Alto Unauthorized Access to Broker VM Docker Containers (CVE-2025-0113)

CVE number = CVE-2025-0113 A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM

Read More
NewsSecurity Vulnerabilities

Palo Alto Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet (CVE-2024-3393)

CVE number = CVE-2024-3393 A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software

Read More
NewsSecurity Vulnerabilities

Palo Alto Networks PAN-OS – cross-site scripting (XSS) vulnerability [CVE-2024-5920]

CVE number – CVE-2024-5920 A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write Panorama

Read More
NewsSecurity Vulnerabilities

OS Command Injection Vulnerability in Palo Alto GlobalProtect Gateway [CVE-2024-3400]

CVE number – CVE-2024-3400 A vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software, found in specific versions

Read More
GeneralNews

Palo Alto Networks Joins Microsoft 365 Networking Partner Program

Businesses are now expected to deliver exceptional user experiences to their employees — whether at work, home, or on the

Read More
NewsSecurity Vulnerabilities

Palo Alto – Authentication Bypass in SAML Authentication [CVE-2020-2021]

When Security Assertion Markup Language (SAML) authentication is enabled and the ‘Validate Identity Provider Certificate’ option is disabled (unchecked), improper

Read More
NewsSecurity Vulnerabilities

Vulnerabilities In Multiple VPN Applications

We are aware of vulnerabilities affecting multiple Virtual Private Network (VPN) applications. A remote attacker could exploit these vulnerabilities to

Read More