CVSS: 9.0EPSS: 0%CPEs: 11EXPL: 0CVE-2012-6605
https://notcve.org/view.php?id=CVE-2012-6605
The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.11 and 4.0.x before 4.0.9 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka Ref ID 34896. La administración del dispositivo mediante el interfaz de comandos en Palo Alto Networks PAN-OS anterior a 3.1.11 y 4.0.x anterior a 4.0.9, permite a usuarios autenticados remotamente ejecutar comandos arbitrarios a través de vectores sin especificar. Aka Ref ID 34896. • https://security.paloaltonetworks.com/CVE-2012-6605 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 11EXPL: 0CVE-2012-6595
https://notcve.org/view.php?id=CVE-2012-6595
The device-management command-line interface in Palo Alto Networks PAN-OS 4.0.x before 4.0.9 and 4.1.x before 4.1.2 allows remote authenticated administrators to execute arbitrary commands via unspecified vectors, aka Ref ID 34595. La administración del dispositivo mediante el interfaz de comandos en Palo Alto Networks PAN-OS 4.0.x anterior a 4.0.9 y 4.1.x anterior a 4.1.2, permite a usuarios autenticados remotamente ejecutar comandos arbitrarios a través de vectores sin especificar. Aka Ref ID 34595. • https://security.paloaltonetworks.com/CVE-2012-6595 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 11EXPL: 0CVE-2012-6600
https://notcve.org/view.php?id=CVE-2012-6600
The device-management command-line interface in Palo Alto Networks PAN-OS 4.0.x before 4.0.9 and 4.1.x before 4.1.2 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Ref ID 34502. La administración del dispositivo mediante el interfaz de comandos en Palo Alto Networks PAN-OS 4.0.x anterior a 4.0.9 y 4.1.x anterior a 4.1.2, permite a usuarios autenticados remotamente ejecutar comandos arbitrarios a través de vectores sin especificar. Aka Ref ID 34502. • https://security.paloaltonetworks.com/CVE-2012-6600 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 4.3EPSS: 0%CPEs: 8EXPL: 0CVE-2012-6590
https://notcve.org/view.php?id=CVE-2012-6590
The web-based management UI in Palo Alto Networks PAN-OS 4.0.x before 4.0.8 allows remote attackers to obtain verbose error information via crafted input, aka Ref ID 33139. La aplicación de gestión web UI de Palo Alto Networks PAN-OS 4.0.x anterior a 4.0.8 permite a atacantes remotos obtener información de errores a través de datos de entrada manipulados. Aka Ref ID 33139. • https://security.paloaltonetworks.com/CVE-2012-6590 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.3EPSS: 0%CPEs: 11EXPL: 0CVE-2012-6597
https://notcve.org/view.php?id=CVE-2012-6597
Palo Alto Networks PAN-OS before 3.1.11 and 4.0.x before 4.0.9 allows remote authenticated users to cause a denial of service (management-server crash) by using the command-line interface for a crafted command, aka Ref ID 35254. Palo Alto Networks PAN-OS anterior a 3.1.11 y 4.0.x anterior a 4.0.9, permite a usuarios autenticados remotamente provocar una denegación de servicio (caída del servidor de administración) utilizando un comando manipulado desde la interfaz. Aka Ref ID 35254. • https://security.paloaltonetworks.com/CVE-2012-6597 • CWE-20: Improper Input Validation •