CVE-2020-2030
published 2020-07-08CVE-2020-2030: An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root…
PriorityP349high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
2.53%
82.9th percentile
An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts PAN-OS 8.1 versions earlier than PAN-OS 8.1.15; and all versions of PAN-OS 7.1 and PAN-OS 8.0. This issue does not impact PAN-OS 9.0, PAN-OS 9.1, or Prisma Access services.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | pan-os | — | — |
| palo_alto_networks | pan-os | — | — |
| palo_alto_networks | pan-os | >= 8.1 < 8.1.15 | 8.1.15 |
| paloalto | pan-os | — | — |
| paloaltonetworks | pan-os | 7.1.0 – 7.1.26 | — |
| paloaltonetworks | pan-os | 8.0.0 – 8.0.20 | — |
| paloaltonetworks | pan-os | >= 8.1.0 < 8.1.15 | 8.1.15 |
CVSS provenance
nvdv3.17.2HIGHCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
vendor_cisco8.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4m82-39xr-j6w2: An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands wit
ghsa_unreviewed·2022-05-24
CVE-2020-2030 [HIGH] GHSA-4m82-39xr-j6w2: An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands wit
An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts PAN-OS 8.1 versions earlier than PAN-OS 8.1.15; and all versions of PAN-OS 7.1 and PAN-OS 8.0. This issue does not impact PAN-OS 9.0, PAN-OS 9.1, or Prisma Access services.
Palo Alto
PAN-OS: OS command injection vulnerability in the management interface
vendor_paloalto·2020-07-08·CVSS 7.2
CVE-2020-2030 [HIGH] CWE-78 PAN-OS: OS command injection vulnerability in the management interface
PAN-OS: OS command injection vulnerability in the management interface
An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges.
Affected products: PAN-OS
Solution: This issue is fixed in PAN-OS 8.1.15 and all later PAN-OS versions.
Workaround: This issue impacts the PAN-OS management interface but you can mitigate the impact of this issue by following best practices for securing the PAN-OS management interface. Please review the Best Practices for Securing Administrative Access in the PAN-OS technical documentation, available at https://docs.paloaltonetworks.com/best-practices.
Cisco
Multiple Vulnerabilities in Cisco Secure Access Control System
vendor_cisco·2014-01-16·CVSS 8.5
CVE-2014-0648 [HIGH] CWE-20 Multiple Vulnerabilities in Cisco Secure Access Control System
Multiple Vulnerabilities in Cisco Secure Access Control System
Cisco Secure Access Control System (ACS) is affected by the following vulnerabilities:
Cisco Secure ACS RMI Privilege Escalation Vulernability
Cisco Secure ACS RMI Unauthenticated User Access Vulnerability
Cisco Secure ACS Operating System Command Injection Vulnerability
Cisco Secure ACS uses the Remote Method Invocation (RMI) interface for internode communication using TCP ports 2020 and 2030.
These vulnerabilities are independent of each other; a release that is affected by one of the vulnerabilities may not be affected by the other.
Cisco has released software updates that address these vulnerabilities. This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecur
Cisco
Multiple Vulnerabilities in Cisco Secure Access Control System
vendor_cisco
CVE-2014-0650 Multiple Vulnerabilities in Cisco Secure Access Control System
CVE-2014-0650: Multiple Vulnerabilities in Cisco Secure Access Control System
Cisco Secure Access Control System (ACS) is affected by the following vulnerabilities: Cisco Secure ACS RMI Privilege Escalation Vulernability Cisco Secure ACS RMI Unauthenticated User Access Vulnerability Cisco Secure ACS Operating System Command Injection Vulnerability Cisco Secure ACS uses the Remote Method Invocation (RMI) interface for internode communication using TCP ports 2020 and 2030. These vulnerabilities are independent of each other; a release that is affected by one of the vulnerabilities may not be affected by the other. Cisco has released software updates that address these vulnerabilities. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/Ci
Cisco
Multiple Vulnerabilities in Cisco Secure Access Control System
vendor_cisco
CVE-2014-0649 Multiple Vulnerabilities in Cisco Secure Access Control System
CVE-2014-0649: Multiple Vulnerabilities in Cisco Secure Access Control System
Cisco Secure Access Control System (ACS) is affected by the following vulnerabilities: Cisco Secure ACS RMI Privilege Escalation Vulernability Cisco Secure ACS RMI Unauthenticated User Access Vulnerability Cisco Secure ACS Operating System Command Injection Vulnerability Cisco Secure ACS uses the Remote Method Invocation (RMI) interface for internode communication using TCP ports 2020 and 2030. These vulnerabilities are independent of each other; a release that is affected by one of the vulnerabilities may not be affected by the other. Cisco has released software updates that address these vulnerabilities. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/Ci
Cisco
Multiple Vulnerabilities in Cisco Secure Access Control System
vendor_cisco
CVE-2014-0648 Multiple Vulnerabilities in Cisco Secure Access Control System
CVE-2014-0648: Multiple Vulnerabilities in Cisco Secure Access Control System
Cisco Secure Access Control System (ACS) is affected by the following vulnerabilities: Cisco Secure ACS RMI Privilege Escalation Vulernability Cisco Secure ACS RMI Unauthenticated User Access Vulnerability Cisco Secure ACS Operating System Command Injection Vulnerability Cisco Secure ACS uses the Remote Method Invocation (RMI) interface for internode communication using TCP ports 2020 and 2030. These vulnerabilities are independent of each other; a release that is affected by one of the vulnerabilities may not be affected by the other. Cisco has released software updates that address these vulnerabilities. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/Ci
Suricata
ET EXPLOIT Apache2 Memory Corruption Inbound (CVE-2020-9490)
suricata·2020-09-03·CVSS 7.5
CVE-2020-9490 [HIGH] ET EXPLOIT Apache2 Memory Corruption Inbound (CVE-2020-9490)
ET EXPLOIT Apache2 Memory Corruption Inbound (CVE-2020-9490)
Rule: alert http any any -> [$HTTP_SERVERS,$HOME_NET] any (msg:"ET EXPLOIT Apache2 Memory Corruption Inbound (CVE-2020-9490)"; flow:established,to_server; http.method; content:"GET"; http.header; header_lowercase; content:"cache-digest|3a 20|EA"; fast_pattern; pcre:"/^(?:8=|9BQQ==)\r?\n?/R"; reference:url,bugs.chromium.org/p/project-zero/issues/detail?id=2030&q=apache&can=1; reference:cve,2020-9490; classtype:attempted-admin; sid:2030830; rev:2; metadata:created_at 2020_09_03, cve CVE_2020_9490, deployment Perimeter, deployment SSLDecrypt, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_04_21;)
No public exploits indexed.
No writeups or analysis indexed.
2020-07-08
Published