cbcvebase.
CVE-2023-0004
published 2023-04-12

CVE-2023-0004: A local file deletion vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to delete files from the local file system…

PriorityP334medium6.5CVSS 3.1
AVNACLPRHUINSUCNIHAH
EPSS
1.13%
62.2th percentile
A local file deletion vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to delete files from the local file system with elevated privileges. These files can include logs and system components that impact the integrity and availability of PAN-OS software.

Affected

16 ranges
VendorProductVersion rangeFixed in
fedoraprojectfedora
fedoraprojectfedora
fedoraprojectfedora
palo_alto_networkspan-os>= 10.0 < 10.0.1110.0.11
palo_alto_networkspan-os>= 10.1 < 10.1.610.1.6
palo_alto_networkspan-os>= 8.1 < 8.1.248.1.24
palo_alto_networkspan-os>= 9.0 < 9.0.179.0.17
palo_alto_networkspan-os>= 9.1 < 9.1.159.1.15
paloaltocloud_ngfw
paloaltopan-os
paloaltoprisma_access
paloaltonetworkspan-os>= 10.0.0 < 10.0.1110.0.11
paloaltonetworkspan-os>= 10.1.0 < 10.1.610.1.6
paloaltonetworkspan-os>= 8.1.0 < 8.1.248.1.24
paloaltonetworkspan-os>= 9.0.0 < 9.0.179.0.17
paloaltonetworkspan-os>= 9.1.0 < 9.1.159.1.15
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.