CVE-2017-15940
published 2017-12-11CVE-2017-15940: The web interface packet capture management component in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before…
PriorityP358critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
4.93%
91.0th percentile
The web interface packet capture management component in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote authenticated users to execute arbitrary code via unspecified vectors.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| paloalto | pan-os | — | — |
| paloaltonetworks | pan-os | < 6.1.19 | 6.1.19 |
| paloaltonetworks | pan-os | >= 7.0.0 < 7.0.19 | 7.0.19 |
| paloaltonetworks | pan-os | >= 7.1.0 < 7.1.14 | 7.1.14 |
| paloaltonetworks | pan-os | >= 8.0.0 < 8.0.6 | 8.0.6 |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-8r9h-33x8-xjgw: The web interface packet capture management component in Palo Alto Networks PAN-OS before 6
ghsa_unreviewed·2022-05-13
CVE-2017-15940 [CRITICAL] CWE-77 GHSA-8r9h-33x8-xjgw: The web interface packet capture management component in Palo Alto Networks PAN-OS before 6
The web interface packet capture management component in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote authenticated users to execute arbitrary code via unspecified vectors.
Palo Alto
Command Injection in PAN-OS
vendor_paloalto·2017-12-06·CVSS 9.8
CVE-2017-15940 [CRITICAL] CWE-77 Command Injection in PAN-OS
Command Injection in PAN-OS
A vulnerability exists in the PAN-OS web interface packet capture management that could allow an authenticated user to inject arbitrary commands. (Ref # PAN-81892 / CVE-2017-15940)
PAN-OS contains a vulnerability that may allow for post authentication command injection
This issue affects PAN-OS 6.1.18 and earlier, PAN-OS 7.0.18 and earlier, PAN-OS 7.1.13 and earlier, PAN-OS 8.0.6 and earlier
Affected products: PAN-OS
Solution: PAN-OS 6.1.19 and later, PAN-OS 7.0.19 and later, PAN-OS 7.1.14 and later, PAN-OS 8.0.6-h3 and later
Workaround: Palo Alto Networks has released content update 765 including vulnerability signatures #30998 that can be used as an interim mitigation to protect PAN-OS devices until the device software is upgraded. Note that signatures 309
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2017-12-11
Published