CVE-2016-9149
published 2016-11-19CVE-2016-9149: The Addresses Object parser in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and…
PriorityP335medium6.5CVSS 3.0
AVNACLPRLUINSUCNIHAN
EPSS
2.04%
78.8th percentile
The Addresses Object parser in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 mishandles single quote characters, which allows remote authenticated users to conduct XPath injection attacks via a crafted string.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| paloalto | pan-os | — | — |
| paloaltonetworks | pan-os | >= 5.0.0 < 5.0.20 | 5.0.20 |
| paloaltonetworks | pan-os | >= 5.1.0 < 5.1.13 | 5.1.13 |
| paloaltonetworks | pan-os | >= 6.0.0 < 6.0.15 | 6.0.15 |
| paloaltonetworks | pan-os | >= 6.1.0 < 6.1.15 | 6.1.15 |
| paloaltonetworks | pan-os | >= 7.0.0 < 7.0.11 | 7.0.11 |
| paloaltonetworks | pan-os | >= 7.1.0 < 7.1.6 | 7.1.6 |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:P/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-f22j-95w2-7rx5: The Addresses Object parser in Palo Alto Networks PAN-OS before 5
ghsa_unreviewed·2022-05-13
CVE-2016-9149 [MEDIUM] GHSA-f22j-95w2-7rx5: The Addresses Object parser in Palo Alto Networks PAN-OS before 5
The Addresses Object parser in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 mishandles single quote characters, which allows remote authenticated users to conduct XPath injection attacks via a crafted string.
Palo Alto
XPath Injection
vendor_paloalto·2016-11-17·CVSS 6.5
CVE-2016-9149 [MEDIUM] CWE-19 XPath Injection
XPath Injection
The Addresses Object parsing function does not properly escape single quotes. (Ref # PAN-55237/92073/CVE-2016-9149)
This post-authentication vulnerability could allow XPath manipulation.
This issue affects PAN-OS 5.0.19 and earlier; PAN-OS 5.1.12 and earlier; PAN-OS 6.0.14 and earlier; PAN-OS 6.1.14 and earlier; PAN-OS 7.0.10 and earlier; PAN-OS 7.1.5 and earlier
Affected products: PAN-OS
Solution: PAN-OS 5.0.20 and later; PAN-OS 5.1.13 and later; PAN-OS 6.0.15 and later; PAN-OS 6.1.15 and later; PAN-OS 7.0.11 and later; PAN-OS 7.1.6 and later
Workaround: N/A
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2016-11-19
Published