Skip to main content

Prisma Cloud

4 CVEs product

Monthly

CVE-2024-5906 MEDIUM This Month

A cross-site scripting (XSS) vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Paloalto Prisma Cloud
NVD
CVSS 4.0
4.8
EPSS
0.2%
CVE-2021-3043 MEDIUM This Month

A reflected cross-site scripting (XSS) vulnerability exists in the Prisma Cloud Compute web console that enables a remote attacker to execute arbitrary JavaScript code in the browser-based web. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Prisma Cloud
NVD
CVSS 3.1
4.8
EPSS
0.6%
CVE-2021-3039 LOW Monitor

An information exposure through log file vulnerability exists in the Palo Alto Networks Prisma Cloud Compute Console where a secret used to authorize the role of the authenticated user is logged to a. Rated low severity (CVSS 3.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Paloalto Information Disclosure Prisma Cloud
NVD
CVSS 3.1
3.8
EPSS
0.5%
CVE-2021-3033 CRITICAL Act Now

An improper verification of cryptographic signature vulnerability exists in the Palo Alto Networks Prisma Cloud Compute console. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Paloalto Jwt Attack Prisma Cloud
NVD
CVSS 3.1
9.8
EPSS
1.2%
EPSS 0% CVSS 4.8
MEDIUM This Month

A cross-site scripting (XSS) vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Paloalto Prisma Cloud
NVD
EPSS 1% CVSS 4.8
MEDIUM This Month

A reflected cross-site scripting (XSS) vulnerability exists in the Prisma Cloud Compute web console that enables a remote attacker to execute arbitrary JavaScript code in the browser-based web. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Prisma Cloud
NVD
EPSS 1% CVSS 3.8
LOW Monitor

An information exposure through log file vulnerability exists in the Palo Alto Networks Prisma Cloud Compute Console where a secret used to authorize the role of the authenticated user is logged to a. Rated low severity (CVSS 3.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Paloalto Information Disclosure Prisma Cloud
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

An improper verification of cryptographic signature vulnerability exists in the Palo Alto Networks Prisma Cloud Compute console. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Paloalto Jwt Attack +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy