CVE-2019-1566
N/A
N/A
Summary
The PAN-OS management web interface in PAN-OS 7.1.21 and earlier, PAN-OS 8.0.14 and earlier, and PAN-OS 8.1.5 and earlier, may allow an unauthenticated attacker to inject arbitrary JavaScript or HTML.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | Palo Alto Networks PAN-OS | PAN-OS 7.1.21 and earlier, PAN-OS 8.0.14 and earlier, and PAN-OS 8.1.5 and earlier. | affected |
Weaknesses
- Cross-Site Scripting (XSS)
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/106750
- https://security.paloaltonetworks.com/CVE-2019-1566
- https://www.purplemet.com/blog/palo-alto-firewall-multiple-xss-vulnerabilities
References
- http://www.securityfocus.com/bid/106750
- https://security.paloaltonetworks.com/CVE-2019-1566
- https://www.purplemet.com/blog/palo-alto-firewall-multiple-xss-vulnerabilities
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.