CVE-2016-1712
published 2016-08-02CVE-2016-1712: Palo Alto Networks PAN-OS before 5.0.19, 5.1.x before 5.1.12, 6.0.x before 6.0.14, 6.1.x before 6.1.12, and 7.0.x before 7.0.8 might allow local users to gain…
PriorityP339high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
EPSS
0.36%
27.4th percentile
Palo Alto Networks PAN-OS before 5.0.19, 5.1.x before 5.1.12, 6.0.x before 6.0.14, 6.1.x before 6.1.12, and 7.0.x before 7.0.8 might allow local users to gain privileges by leveraging improper sanitization of the root_reboot local invocation.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| paloalto | pan-os | — | — |
| paloaltonetworks | pan-os | >= 5.0.0 < 5.0.19 | 5.0.19 |
| paloaltonetworks | pan-os | >= 5.1 < 5.1.12 | 5.1.12 |
| paloaltonetworks | pan-os | >= 6.0.0 < 6.0.14 | 6.0.14 |
| paloaltonetworks | pan-os | >= 6.1.0 < 6.1.12 | 6.1.12 |
| paloaltonetworks | pan-os | >= 7.0.0 < 7.0.8 | 7.0.8 |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jpx6-p7fw-5482: Palo Alto Networks PAN-OS before 5
ghsa_unreviewed·2022-05-13
CVE-2016-1712 [HIGH] CWE-20 GHSA-jpx6-p7fw-5482: Palo Alto Networks PAN-OS before 5
Palo Alto Networks PAN-OS before 5.0.19, 5.1.x before 5.1.12, 6.0.x before 6.0.14, 6.1.x before 6.1.12, and 7.0.x before 7.0.8 might allow local users to gain privileges by leveraging improper sanitization of the root_reboot local invocation.
Palo Alto
Local privilege escalation
vendor_paloalto·2016-07-13·CVSS 7.8
CVE-2016-1712 [HIGH] CWE-20 Local privilege escalation
Local privilege escalation
Palo Alto Networks firewalls do not properly sanitize the root_reboot local invocation which can potentially allow executing code with higher privileges (Ref. 92293) (CVE-2016-1712).
Exploitation of this privilege escalation is restricted to local users. Potential attackers would have to first obtain a shell on the device before they could attempt to escalate privileges through this vulnerability.
This issue affects PAN-OS 5.0.18 and earlier; PAN-OS 5.1.11 and earlier; PAN-OS 6.0.13 and earlier; PAN-OS 6.1.11 and earlier; PAN-OS 7.0.7 and earlier
Affected products: PAN-OS
Solution: PAN-OS 5.0.19 and later; PAN-OS 5.1.12 and later; PAN-OS 6.0.14 and later; PAN-OS 6.1.12 and later; PAN-OS 7.0.8 and later
Workaround: N/A
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2016-08-02
Published