CVE-2019-1582Out-of-bounds Write in Paloaltonetworks Pan-os

CWE-787Out-of-bounds WriteCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.5%
top 32.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Paloaltonetworks Pan-osPaloalto Pan-os
Timeline
PublishedAug 23
Latest updateMay 24

Description

Memory corruption in PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier will allow an administrative user to cause arbitrary memory corruption by rekeying the current client interactive session.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages2 packages

NVDpaloaltonetworks/pan-os8.1.08.1.9+1
Palo Altopaloalto/pan-os

🔴Vulnerability Details

2
GHSA
GHSA-h6gp-3wvg-78j5: Memory corruption in PAN-OS 82022-05-24
CVEList
CVE-2019-1582: Memory corruption in PAN-OS 82019-08-23

📋Vendor Advisories

1
Palo Alto
Memory Corruption in PAN-OS2019-08-21
CVE-2019-1582 — Out-of-bounds Write in Paloaltonetworks | cvebase