CVE-2021-3063 — Improper Handling of Exceptional Conditions in Palo Alto Networks Pan-os

CWE-755 — Improper Handling of Exceptional Conditions4 documents4 sources

Severity

7.5HIGHNVD

EPSS

0.4%

top 37.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Palo Alto Networks Pan-os Paloaltonetworks Pan-os Paloalto Pan-os +1 more

Timeline

PublishedNov 10

Latest updateMay 24

Description

An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to send specifically crafted traffic to a GlobalProtect interface that causes the service to stop responding. Repeated attempts to send this request result in denial of service to all PAN-OS services by restarting the device and putting it into maintenance mode. This issue impacts: PAN-OS 8.1 versions earlier …

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶NVDpaloaltonetworks/pan-os8.1.0 — 8.1.21+4

▶CVEListV5palo_alto_networks/pan-os8.1 — 8.1.21+4

▶Palo Altopaloalto/prisma_access

▶Palo Altopaloalto/pan-os

🔴Vulnerability Details

GHSA

GHSA-2h4v-5pj9-9hm9: An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an↗2022-05-24

▶

CVEList

PAN-OS: Denial-of-Service (DoS) Vulnerability in GlobalProtect Portal and Gateway Interfaces↗2021-11-10

▶

📋Vendor Advisories

Palo Alto

PAN-OS: Denial-of-Service (DoS) Vulnerability in GlobalProtect Portal and Gateway Interfaces↗2021-11-10

▶