CVE-2023-6792
published 2023-12-13CVE-2023-6792: An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and…
PriorityP345medium6.3CVSS 3.1
AVNACLPRLUINSUCLILAL
EPSS
1.15%
62.7th percentile
An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | pan-os | >= 10.0 < 10.0.12 | 10.0.12 |
| palo_alto_networks | pan-os | >= 10.1 < 10.1.6 | 10.1.6 |
| palo_alto_networks | pan-os | >= 8.1 < 8.1.24 | 8.1.24 |
| palo_alto_networks | pan-os | >= 9.0 < 9.0.17 | 9.0.17 |
| palo_alto_networks | pan-os | >= 9.1 < 9.1.15 | 9.1.15 |
| paloalto | cloud_ngfw | — | — |
| paloalto | pan-os | — | — |
| paloalto | prisma_access | — | — |
| paloaltonetworks | pan-os | >= 10.0.0 < 10.0.12 | 10.0.12 |
| paloaltonetworks | pan-os | >= 10.1.0 < 10.1.6 | 10.1.6 |
| paloaltonetworks | pan-os | >= 8.1.0 < 8.1.24 | 8.1.24 |
| paloaltonetworks | pan-os | >= 9.0.0 < 9.0.17 | 9.0.17 |
| paloaltonetworks | pan-os | >= 9.1.0 < 9.1.15 | 9.1.15 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
PAN-OS: OS Command Injection Vulnerability in the XML API
vendor_paloalto·2023-12-13·CVSS 6.3
CVE-2023-6792 [MEDIUM] CWE-88 PAN-OS: OS Command Injection Vulnerability in the XML API
PAN-OS: OS Command Injection Vulnerability in the XML API
An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.
Affected products: Cloud NGFW, PAN-OS, Prisma Access
Solution: This issue is fixed in PAN-OS 8.1.24, PAN-OS 9.0.17, PAN-OS 9.1.15, PAN-OS 10.0.12, PAN-OS 10.1.6, and all later PAN-OS versions.
Please note that customers impacted by the PAN-OS root and default certificate expiration issue must carefully select the fixed version of PAN-OS they upgrade their devices to when addressing this vulnerability to not reintroduce the certificate issue. More information and support for the certificate expiration
GHSA
GHSA-jpwp-h56f-5v3g: An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system process
ghsa_unreviewed·2023-12-13
CVE-2023-6792 [MEDIUM] CWE-78 GHSA-jpwp-h56f-5v3g: An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system process
An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-12-13
Published