CVE-2020-2018Improper Authentication in Palo Alto Networks Pan-os

CWE-287Improper AuthenticationCWE-327Use of a Broken or Risky Cryptographic AlgorithmCWE-345Insufficient Verification of Data Authenticity33 documents17 sources
Severity
9.0CRITICALNVD
EPSS
0.3%
top 44.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Palo Alto Networks Pan-osPaloaltonetworks Pan-osPaloalto Pan-os
Timeline
PublishedMay 13
Latest updateMar 5

Description

An authentication bypass vulnerability in the Panorama context switching feature allows an attacker with network access to a Panorama's management interface to gain privileged access to managed firewalls. An attacker requires some knowledge of managed firewalls to exploit this issue. This issue does not affect Panorama configured with custom certificates authentication for communication between Panorama and managed devices. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 2.2 | Impact: 6.0

Affected Packages3 packages

NVDpaloaltonetworks/pan-os7.1.07.1.26+3
CVEListV5palo_alto_networks/pan-os7.17.1.26+3
Palo Altopaloalto/pan-os

🔴Vulnerability Details

7
OSV
python-bleach vulnerabilities2026-03-05
OSV
zziplib vulnerabilities2023-08-17
OSV
kamailio vulnerabilities2023-04-14
OSV
libjpeg-turbo vulnerabilities2022-09-22
GHSA
GHSA-7qj6-jfj8-2jr9: An authentication bypass vulnerability in Palo Alto Networks PAN-OS Panorama proxy service allows an unauthenticated user with network access to Panor2022-05-24

💥Exploits & PoCs

3
Exploit-DB
Foxit Reader 9.0.1.1049 - Arbitrary Code Execution2020-11-27
Exploit-DB
Drobo 5N2 4.1.1 - Remote Command Injection2020-03-13
Nuclei
Cisco ASA Security Checks

📋Vendor Advisories

7
Microsoft
GnuTLS 3.6.x before 3.6.14 uses incorrect cryptography for encrypting a session ticket (a loss of confidentiality in TLS 1.2 and an authentication bypass in TLS 1.3). The earliest affected version is 2020-06-09
Red Hat
gnutls: session resumption works without master key allowing MITM2020-06-03
Palo Alto
PAN-OS: Panorama authentication bypass vulnerability2020-05-13
Oracle
Oracle Oracle Communications Applications Risk Matrix: IDIH Visualization (Spring Framework) — CVE-2018-157562020-04-15
Chrome
Stable Channel Update for Desktop: CVE-2020-65002020-02-04

💬Community

6
Bugzilla
CVE-2020-14151 libjpeg: read_*_pixel functions in rdtarga.c in cjpeg mishandles EOF2020-06-19
Bugzilla
CVE-2018-21232 re2c: uncontrolled recursion that causes stack consumption in find_fixed_tags2020-05-19
Bugzilla
CVE-2018-14468 tcpdump: Buffer over-read in mfr_print() function in print-fr.c2019-10-10
Bugzilla
CVE-2018-16750 ImageMagick: Memory leak in the formatIPTCfromBuffer function in coders/meta.c2018-09-11
Bugzilla
CVE-2018-14340 wireshark: Multiple dissectors could crash (wnpa-sec-2018-36)2018-07-23
CVE-2020-2018 — Improper Authentication in Palo | cvebase