eol.network
Account
Home/Palo Alto/PA-500/PA-500

PA-500

Palo Alto Chassis · PA-500 Series

High confidence Official Palo Alto notice ↗ Verified
PA-500 is dead. Palo Alto support ended (-946d). Last available for order . Replacement: PA-400 Series, PA-500 Series.

Is the PA-500 still supported?

No. Palo Alto ended support for the PA-500 on 2023-10-31. No further security fixes will be issued. See Palo Alto's lifecycle bulletin.

When does the PA-500 reach end of support?

Palo Alto support for the PA-500 ends on 2023-10-31.

What replaces the PA-500?

Palo Alto lists multiple successors: PA-400 Series, PA-500 Series.

What known-exploited CVEs apply to the PA-500 past end of support?

10 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform the PA-500 runs. These will not be patched on this device because it is past the Palo Alto security-support date. See the Known Exploited Vulnerabilities table below for the full list.

Replaced by PA-400 Series · PA-500 Series

Known Exploited Vulnerabilities

This device is past Palo Alto's security-support date. 10 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform it runs. Palo Alto is not issuing patches for this model. Isolate, compensate, or refresh.

CVE KEV added Vulnerability Flags
CVE-2025-0111 Palo Alto Networks PAN-OS File Read Vulnerability
Advisory 1 Advisory 2
CVE-2025-0108 Palo Alto Networks PAN-OS Authentication Bypass Vulnerability
Advisory 1 Advisory 2
CVE-2024-3393 Palo Alto Networks PAN-OS Malicious DNS Packet Vulnerability
Advisory 1 Advisory 2
CVE-2024-9474 Palo Alto Networks PAN-OS Management Interface OS Command Injection Vulnerability
Advisory 1 Advisory 2
Ransomware
CVE-2024-0012 Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability
Advisory 1 Advisory 2
Ransomware
CVE-2024-3400 Palo Alto Networks PAN-OS Command Injection Vulnerability
Advisory 1 Advisory 2
Ransomware
CVE-2022-0028 Palo Alto Networks PAN-OS Reflected Amplification Denial-of-Service Vulnerability
Advisory 1 Advisory 2
CVE-2017-15944 Palo Alto Networks PAN-OS Remote Code Execution Vulnerability
Advisory 1 Advisory 2
CVE-2020-2021 Palo Alto Networks PAN-OS Authentication Bypass Vulnerability
Advisory 1
Ransomware
CVE-2019-1579 Palo Alto Networks PAN-OS Remote Code Execution Vulnerability
Advisory 1
Ransomware

Source: CISA Known Exploited Vulnerabilities catalog. The Ransomware flag reflects CISA's own knownRansomwareCampaignUse field, set when the CVE has been observed in ransomware campaigns per their threat intel. It's not a property of the vulnerability description itself.

Correlation is at the platform level, not per-OS-version. Not exhaustive: KEV only lists actively-exploited CVEs and many relevant unexploited vulnerabilities are not here. Verify against vendor security advisories (PSIRT, JSA, PAN-SA) and NVD before acting. See compensating controls if refresh isn't immediate.

PA-500 Lifecycle Overview

The Palo Alto PA-500 is a chassis product in the Palo Alto PA-500 series. This product has reached end of life as of , meaning Palo Alto no longer provides technical support, software updates, or hardware replacement for this product. It was last available for purchase on . Organizations still running the PA-500 should plan a migration to PA-400 Series, PA-500 Series.

Lifecycle Milestones

End of sale 7y 7mo ago
Last date of support 2y 7mo ago
Last Supported OS

PAN-OS 8.1

Sunsetting around the same time

Other Palo Alto hardware reaching end of support near .

Applicable Platforms
PA-500
↑ Top