Total vulnerabilities in the database
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface. Then, when viewed by a properly authenticated administrator, the JavaScript payload executes and disguises all associated actions as performed by that unsuspecting authenticated administrator.
| Software | From | Fixed in |
|---|---|---|
| paloaltonetworks / pan-os | 9.0.0 | 9.0.17 |
| paloaltonetworks / pan-os | 8.1.0 | 8.1.26 |
| paloaltonetworks / pan-os | 9.1.0 | 9.1.17 |
| paloaltonetworks / pan-os | 10.2.0 | 10.2.5 |
| paloaltonetworks / pan-os | 10.1.0 | 10.1.11 |
| paloaltonetworks / pan-os | 11.0.0 | 11.0.2 |