Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 and earlier with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauthenticated remote attacker to execute arbitrary code.
https://www.tenable.com/cyber-exposure/a-look-inside-the-ransomware-ecosystem
https://security.paloaltonetworks.com/CVE-2019-1579
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010