CVE-2023-6789
published 2023-12-13CVE-2023-6789: A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a…
PriorityP419medium4.8CVSS 3.1
AVNACLPRHUIRSCCLILAN
EPSS
0.41%
33.4th percentile
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface. Then, when viewed by a properly authenticated administrator, the JavaScript payload executes and disguises all associated actions as performed by that unsuspecting authenticated administrator.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | >= 0 < 5.4.251 | 5.4.251 |
| linux | linux_kernel | >= 5.11.0 < 6.1.42 | 6.1.42 |
| linux | linux_kernel | >= 5.16.0 < 6.4.7 | 6.4.7 |
| linux | linux_kernel | >= 5.5.0 < 5.10.188 | 5.10.188 |
| linux | linux_kernel | >= 5.6.0 < 5.15.123 | 5.15.123 |
| palo_alto_networks | pan-os | 10.0 – All | — |
| palo_alto_networks | pan-os | >= 10.1 < 10.1.11 | 10.1.11 |
| palo_alto_networks | pan-os | >= 10.2 < 10.2.5 | 10.2.5 |
| palo_alto_networks | pan-os | >= 11.0 < 11.0.2 | 11.0.2 |
| palo_alto_networks | pan-os | >= 8.1 < 8.1.26 | 8.1.26 |
| palo_alto_networks | pan-os | >= 9.0 < 9.0.17-h4 | 9.0.17-h4 |
| palo_alto_networks | pan-os | >= 9.1 < 9.1.17 | 9.1.17 |
| paloalto | cloud_ngfw | — | — |
| paloalto | pan-os | — | — |
| paloalto | prisma_access | — | — |
| paloaltonetworks | pan-os | >= 10.1.0 < 10.1.11 | 10.1.11 |
| paloaltonetworks | pan-os | >= 10.2.0 < 10.2.5 | 10.2.5 |
| paloaltonetworks | pan-os | >= 11.0.0 < 11.0.2 | 11.0.2 |
| paloaltonetworks | pan-os | >= 8.1.0 < 8.1.26 | 8.1.26 |
| paloaltonetworks | pan-os | >= 9.0.0 < 9.0.17 | 9.0.17 |
| paloaltonetworks | pan-os | >= 9.1.0 < 9.1.17 | 9.1.17 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Siemens RUGGEDCOM APE1808
cisa_ics·2024-04-11·CVSS 7.5
[HIGH] Siemens RUGGEDCOM APE1808
ICS Advisory
##
Siemens RUGGEDCOM APE1808
Release DateApril 11, 2024
Alert CodeICSA-24-102-04
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 8.2
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Siemens
- Equipment: RUGGEDCOM APE1808
- Vulnerabilities: Cross-site Scripting, Improper Privilege Management, Improper Check for Unusual or Exceptional Conditions, Truncation of Security-relevant Information, Insufficient Session Expiration
#
Palo Alto
PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface
vendor_paloalto·2023-12-13·CVSS 4.8
CVE-2023-6789 [MEDIUM] CWE-79 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface
PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface. Then, when viewed by a properly authenticated administrator, the JavaScript payload executes and disguises all associated actions as performed by that unsuspecting authenticated administrator.
Affected products: Cloud NGFW, PAN-OS, Prisma Access
Solution: This issue is fixed in PAN-OS 8.1.26, PAN-OS 9.0.17-h4, PAN-OS 9.1.17, PAN-OS 10.1.11, PAN-OS 10.2.5, PAN-OS 11.0.2, and all later PAN-OS versions.
Workaround: This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate
OSV
btrfs: fix warning when putting transaction with qgroups enabled after abort
osv·2025-12-09
CVE-2023-53865 btrfs: fix warning when putting transaction with qgroups enabled after abort
btrfs: fix warning when putting transaction with qgroups enabled after abort
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix warning when putting transaction with qgroups enabled after abort
If we have a transaction abort with qgroups enabled we get a warning
triggered when doing the final put on the transaction, like this:
[552.6789] ------------[ cut here ]------------
[552.6815] WARNING: CPU: 4 PID: 81745 at fs/btrfs/transaction.c:144 btrfs_put_transaction+0x123/0x130 [btrfs]
[552.6817] Modules linked in: btrfs blake2b_generic xor (...)
[552.6819] CPU: 4 PID: 81745 Comm: btrfs-transacti Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1
[552.6819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014
GHSA
GHSA-c7j9-rrpf-r62p: A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a
ghsa_unreviewed·2023-12-13
CVE-2023-6789 [MEDIUM] CWE-79 GHSA-c7j9-rrpf-r62p: A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables a malicious authenticated read-write administrator to store a JavaScript payload using the web interface. Then, when viewed by a properly authenticated administrator, the JavaScript payload executes and disguises all associated actions as performed by that unsuspecting authenticated administrator.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-12-13
Published