Cross-site scripting (XSS) vulnerability in the web-based device-management API browser in Palo Alto Networks PAN-OS before 4.1.13 and 5.0.x before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via crafted data, aka Ref ID 50908.
CVSS v2.0 Score
4.3
/ 10.0
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Information
- Published
- 31 août 2013
- Updated
- 29 avr. 2026
- Status
- Modified
- Source
- cve@mitre.org
Affected products
paloaltonetworks pan-osAll Palo Alto PAN-OS CVEs →
Versions : 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4
Weaknesses (CWE)
CWE-79
Similar CVEs
Other vulnerabilities of type CWE-79
Loading…
Monitor your products
Get automatic alerts for every new CVE affecting your equipment.