vulnerability

Palo Alto Networks PAN-SA-2018-0014 (CVE-2018-10141): Cross-Site Scripting

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	Oct 11, 2018	Oct 12, 2018	Jun 17, 2020

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

Oct 11, 2018

Added

Oct 12, 2018

Modified

Jun 17, 2020

Description

GlobalProtect Portal Login page in Palo Alto Networks PAN-OS before 8.1.4 allows an unauthenticated attacker to inject arbitrary JavaScript or HTML.

palo-alto-networks-pan-os-upgrade-8-1

NEW

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.