CVSS: 10.0EPSS: 2%CPEs: 6EXPL: 0CVE-2012-6592
https://notcve.org/view.php?id=CVE-2012-6592
31 Aug 2013 — Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote attackers to execute arbitrary commands via unspecified vectors, aka Ref ID 31091. Palo Alto Networks PAN-OS anterior a 3.1.10 y 4.0.x anterior a 4.0.5, permite a atacantes remotos ejecutar comandos arbitrarios a través de vectores sin especificar. Aka Ref ID 31091. • https://security.paloaltonetworks.com/CVE-2012-6592 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 6EXPL: 0CVE-2012-6591
https://notcve.org/view.php?id=CVE-2012-6591
31 Aug 2013 — The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote authenticated administrators to execute arbitrary commands via unspecified vectors, aka Ref ID 31116. El interfaz de gestión de línea de comandos en Palo Alto Networks PAN-OS anterior a 3.1.10 y 4.0.x anterior a 4.0.5, permite a usuarios autenticados remotamente ejecutar comandos arbitrarios a través de vectores no especificados. Aka Ref ID 31116. • https://security.paloaltonetworks.com/CVE-2012-6591 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 11EXPL: 0CVE-2012-6594
https://notcve.org/view.php?id=CVE-2012-6594
31 Aug 2013 — The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.11, 4.0.x before 4.0.8, and 4.1.x before 4.1.1 allows remote authenticated administrators to execute arbitrary commands via unspecified vectors, aka Ref ID 34299. La gestión del dispositivo a través del interfaz de comandos en Palo Alto Networks PAN-OS anterior a 3.1.11 y 4.0.x anterior a 4.0.8, y 4.1.x anterior a 4.1.1, permite a usuarios autenticados remotamente ejecutar comandos arbitrarios a través de vectores no especi... • https://security.paloaltonetworks.com/CVE-2012-6594 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 6.1EPSS: 0%CPEs: 29EXPL: 1CVE-2013-5664
https://notcve.org/view.php?id=CVE-2013-5664
31 Aug 2013 — Cross-site scripting (XSS) vulnerability in the web-based device-management API browser in Palo Alto Networks PAN-OS before 4.1.13 and 5.0.x before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via crafted data, aka Ref ID 50908. Vulnerabilidad XSS en el navegador web-based device-management API en Palo Alto Networks PAN-OS anterior a 4.1.13 y 5.0.x anterior a 5.0.6, permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarias a través de datos manipulados. • https://github.com/phusion/rails-cve-2012-5664-test • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 8EXPL: 0CVE-2012-6598
https://notcve.org/view.php?id=CVE-2012-6598
31 Aug 2013 — The device-management command-line interface in Palo Alto Networks PAN-OS 4.0.x before 4.0.8 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Ref ID 33080. La administración del dispositivo mediante el interfaz de comandos en Palo Alto Networks PAN-OS 4.0.x anterior a 4.0.8, permite a usuarios autenticados remotamente ejecutar comandos arbitrarios a través de vectores sin especificar. Aka Ref ID 33080. • https://security.paloaltonetworks.com/CVE-2012-6598 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 1%CPEs: 16EXPL: 0CVE-2012-6603
https://notcve.org/view.php?id=CVE-2012-6603
31 Aug 2013 — The web management UI in Palo Alto Networks PAN-OS before 3.1.12, 4.0.x before 4.0.10, and 4.1.x before 4.1.4 allows remote attackers to bypass authentication and obtain administrator privileges via unspecified vectors, aka Ref ID 37034. La gestión del dispositivo a través del interfaz web en Palo Alto Networks PAN-OS anterior a 3.1.12, 4.0.x anterior a 4.0.10 y 4.1.x anterior a 4.1.4, permite a usuarios autenticados remotamente evitar la autenticación y obtener privilegios de administrador. Aka Ref ID 3703... • https://security.paloaltonetworks.com/CVE-2012-6603 • CWE-287: Improper Authentication •
CVSS: 9.0EPSS: 0%CPEs: 5EXPL: 0CVE-2012-6602
https://notcve.org/view.php?id=CVE-2012-6602
31 Aug 2013 — The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.4 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Ref ID 30122. La gestión del dispositivo a través del interfaz de comandos en Palo Alto Networks PAN-OS anterior a 3.1.10 y 4.0.x anterior a 4.0.4, permite a usuarios autenticados remotamente ejecutar comandos arbitrarios a través de vectores no especificados. Aka Ref ID 30122. • https://security.paloaltonetworks.com/CVE-2012-6602 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •