CVE-2018-10143
published 2018-12-12CVE-2018-10143: The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated attacker with remote access to run system level commands on…
PriorityP273critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
24.85%
97.6th percentile
The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated attacker with remote access to run system level commands on the device hosting this service/application.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | palo_alto_networks_expedition | — | — |
| paloalto | expedition | — | — |
| paloaltonetworks | expedition | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Target application is Palo Alto Networks Expedition Migration Tool version 1.0.107 and earlier; any unauthenticated remote request resulting in OS command execution against this service should be treated as exploitation of this vulnerability. ↗
- ·No workaround is available; the only remediation is upgrading to Expedition 1.0.108 or later. ↗
- ·Exploitation requires no authentication, meaning network-level access controls (e.g., firewall rules restricting access to the Expedition service) are the only compensating control prior to patching. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
Remote Code Execution in Expedition Migration Tool
vendor_paloalto·2018-12-11·CVSS 9.8
CVE-2018-10143 [CRITICAL] CWE-269 Remote Code Execution in Expedition Migration Tool
Remote Code Execution in Expedition Migration Tool
A remote code execution vulnerability exists in the Palo Alto Networks Migration Tool (“Expedition”). (Ref # MT-794/ CVE-2018-10143)
Successful exploitation of this issue may allow an unauthenticated attacker with remote access to run system level commands on the device hosting this service/application.
This issue affects Expedition 1.0.107 and earlier.
Note that this issue only impacts the Palo Alto Networks Migration Tool (“Expedition”), a tool available from the Palo Alto Networks Live site. This issue does not affect PAN-OS or any other supported product or service. For more information on Expedition, see: https://live.paloaltonetworks.com/t5/Expedition-Migration-Tool/ct-p/migration_tool.
Affected products: Expedition
Solution: Exp
GHSA
GHSA-r6rp-496r-7c7f: The Palo Alto Networks Expedition Migration tool 1
ghsa_unreviewed·2022-05-13
CVE-2018-10143 [CRITICAL] CWE-269 GHSA-r6rp-496r-7c7f: The Palo Alto Networks Expedition Migration tool 1
The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated attacker with remote access to run system level commands on the device hosting this service/application.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/106174https://doddsecurity.com/234/command-injection-on-palo-alto-networks-expedition/https://security.paloaltonetworks.com/CVE-2018-10143http://www.securityfocus.com/bid/106174https://doddsecurity.com/234/command-injection-on-palo-alto-networks-expedition/https://security.paloaltonetworks.com/CVE-2018-10143
2018-12-12
Published