Security Advisory

CVE-2023-0007

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-10 16:30:47
Last updated 2025-01-24 18:07:08
Assigner palo_alto
State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances enables an authenticated read-write administrator to store a JavaScript payload in the web interface that will execute in the context of another administrator’s browser when viewed.