CVE-2020-2022Sensitive Information Exposure in Palo Alto Networks Pan-os

CWE-200Sensitive Information ExposureCWE-269Improper Privilege ManagementCWE-284Improper Access ControlCWE-369Divide By ZeroCWE-125Out-of-bounds ReadCWE-787Out-of-bounds WriteCWE-22Path TraversalCWE-79Cross-site ScriptingCWE-502Deserialization of Untrusted DataCWE-918Server-Side Request ForgeryCWE-91XML Injection (aka Blind XPath Injection)CWE-78OS Command InjectionCWE-665Improper Initialization39 documents16 sources
Severity
7.5HIGHNVD
CISA9.8CISA8.8CISA7.8CISA7.3CISA5.5CISA5.4
EPSS
0.9%
top 24.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Palo Alto Networks Pan-osPaloaltonetworks Pan-osPaloalto Pan-os
Timeline
PublishedNov 12
Latest updateDec 24

Description

An information exposure vulnerability exists in Palo Alto Networks Panorama software that discloses the token for the Panorama web interface administrator's session to a managed device when the Panorama administrator performs a context switch into that device. This vulnerability allows an attacker to gain privileged access to the Panorama web interface. An attacker requires some knowledge of managed firewalls to exploit this issue. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.6 | Impact: 5.9

Affected Packages3 packages

NVDpaloaltonetworks/pan-os8.1.08.1.17+2
CVEListV5palo_alto_networks/pan-os8.18.1.17+2
Palo Altopaloalto/pan-os

🔴Vulnerability Details

7
OSV
wifi: mt76: mt7921e: fix rmmod crash in driver reload test2025-12-24
OSV
gdb vulnerabilities2024-06-20
OSV
linux-azure-5.4 vulnerabilities2023-09-04
GHSA
4thline cling uPnP protocol issue can lead to denial of service2022-08-16
GHSA
Cross-site Scripting vulnerability in Jenkins2022-06-24

💥Exploits & PoCs

3
Exploit-DB
Jedox 2020.2.5 - Remote Code Execution via Configurable Storage Path2023-05-05
Exploit-DB
Jedox 2020.2.5 - Remote Code Execution via Executable Groovy-Scripts2023-05-05
Exploit-DB
D-Link DIR-846 - Remote Command Execution (RCE) vulnerability2023-04-05

📋Vendor Advisories

16
Red Hat
kernel: linux/dim: Fix divide by 0 in RDMA DIM2025-02-26
CISA
Apple Multiple Products Memory Corruption Vulnerability2022-06-27
Oracle
Oracle Oracle Blockchain Platform Risk Matrix: BCS Console (Netty) — CVE-2020-116122022-04-15
Oracle
Oracle Oracle Commerce Risk Matrix: Workbench (Guava) — CVE-2020-89082022-04-15
Oracle
Oracle Oracle Communications Risk Matrix: Policy (libcurl) — CVE-2020-82312022-04-15
CVE-2020-2022 — Sensitive Information Exposure in Palo | cvebase