Vulnerabilities > Paloaltonetworks > PAN OS > 8.1.25

DATE CVE VULNERABILITY TITLE RISK
2023-12-13 CVE-2023-6789 Cross-site Scripting vulnerability in Paloaltonetworks Pan-Os
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface.
network
low complexity
paloaltonetworks CWE-79
4.8
4.8
2023-12-13 CVE-2023-6794 Unrestricted Upload of File with Dangerous Type vulnerability in Paloaltonetworks Pan-Os
An arbitrary file upload vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.
network
low complexity
paloaltonetworks CWE-434
4.7
4.7