CVE-2017-15943
published 2017-12-11CVE-2017-15943: The configuration file import for applications, spyware and vulnerability objects functionality in the web interface in Palo Alto Networks PAN-OS before…
PriorityP429medium5.3CVSS 3.0
AVNACLPRNUINSUCLINAN
EPSS
1.70%
74.5th percentile
The configuration file import for applications, spyware and vulnerability objects functionality in the web interface in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, and 7.1.x before 7.1.14 allows remote attackers to conduct server-side request forgery (SSRF) attacks and consequently obtain sensitive information via vectors related to parsing of external entities.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| paloalto | pan-os | — | — |
| paloaltonetworks | pan-os | < 6.1.19 | 6.1.19 |
| paloaltonetworks | pan-os | >= 7.0.0 < 7.0.19 | 7.0.19 |
| paloaltonetworks | pan-os | >= 7.1.0 < 7.1.14 | 7.1.14 |
CVSS provenance
nvdv3.05.3MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
Server-Side Request Forgery in PAN-OS
vendor_paloalto·2017-12-06·CVSS 5.3
CVE-2017-15943 [MEDIUM] CWE-918 Server-Side Request Forgery in PAN-OS
Server-Side Request Forgery in PAN-OS
A vulnerability exists in the PAN-OS web interface in the configuration file import for applications, spyware and vulnerability objects. Exploitation of this vulnerability allows for the parsing of external entities and could lead a PAN-OS device to connect to and disclose limited information to the attacker's server. (Ref # PAN-80452 / CVE-2017-15943)
PAN-OS contains a vulnerability that may allow for an attacker to perform Server-Side Request Forgery. Successful exploitation of this issue may allow an attacker to disclose limited information to an attacker's server.
This issue affects PAN-OS 6.1.18 and earlier, PAN-OS 7.0.18 and earlier, PAN-OS 7.1.13 and earlier
Affected products: PAN-OS
Solution: PAN-OS 6.1.19 and later, PAN-OS 7.0.19 and later,
GHSA
GHSA-rh48-33f7-4q29: The configuration file import for applications, spyware and vulnerability objects functionality in the web interface in Palo Alto Networks PAN-OS befo
ghsa_unreviewed·2022-05-13
CVE-2017-15943 [MEDIUM] CWE-918 GHSA-rh48-33f7-4q29: The configuration file import for applications, spyware and vulnerability objects functionality in the web interface in Palo Alto Networks PAN-OS befo
The configuration file import for applications, spyware and vulnerability objects functionality in the web interface in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, and 7.1.x before 7.1.14 allows remote attackers to conduct server-side request forgery (SSRF) attacks and consequently obtain sensitive information via vectors related to parsing of external entities.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2017-12-11
Published