Paloalto PAN-OS vulnerabilities

CVE-2020-1979 [HIGH] CWE-134 PAN-OS: A format string vulnerability in PAN-OS log daemon (logd) on Panorama allows local privilege escalation PAN-OS: A format string vulnerability in PAN-OS log daemon (logd) on Panorama allows local privilege escalation A format string vulnerability in the PAN-OS log daemon (logd) on Panorama allows a network based attacker with knowledge of registered firewall devices and access to Panorama management interfaces to execute arbitrary code, bypassing the restrict

CVE-2020-1981 [HIGH] CWE-377 PAN-OS: Predictable temporary filename vulnerability allows local privilege escalation PAN-OS: Predictable temporary filename vulnerability allows local privilege escalation A predictable temporary filename vulnerability in PAN-OS allows local privilege escalation. This issue allows a local attacker who bypassed the restricted shell to execute commands as a low privileged user and gain root access on the PAN-OS hardware or virtual appliance. This issue affects only

CVE-2020-1980 [HIGH] CWE-77 PAN-OS: Shell injection vulnerability in PAN-OS CLI allows execution of shell commands PAN-OS: Shell injection vulnerability in PAN-OS CLI allows execution of shell commands A shell command injection vulnerability in the PAN-OS CLI allows a local authenticated user to escape the restricted shell and escalate privileges. This issue affects only PAN-OS 8.1 versions earlier than PAN-OS 8.1.13. This issue does not affect PAN-OS 7.1, PAN-OS 9.0, or later PAN-OS versions.

CVE-2020-1975 [HIGH] CWE-112 Missing XML Validation in PAN-OS Web Interface Missing XML Validation in PAN-OS Web Interface Missing XML validation vulnerability in the PAN-OS web interface on Palo Alto Networks PAN-OS software allows authenticated users to inject arbitrary XML that results in privilege escalation. This issue affects PAN-OS 8.1 versions earlier than PAN-OS 8.1.12 and PAN-OS 9.0 versions earlier than PAN-OS 9.0.6. This issue does not affect PAN-OS 7.1, PAN-OS 8.0, or PAN-OS 9.1 or

CVE-2019-17440 [CRITICAL] CWE-923 PAN-OS on PA-7000 Series: Improper restriction of communication to Log Forwarding Card (LFC) allows root access PAN-OS on PA-7000 Series: Improper restriction of communication to Log Forwarding Card (LFC) allows root access Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with second-generation Switch Management Card (SMC) may allow an attacker with network access to the LFC to gain root access to PAN-OS. This issue

CVE-2019-17437 [HIGH] CWE-280 PAN-OS: Custom-role users may escalate privileges PAN-OS: Custom-role users may escalate privileges An improper authentication check in Palo Alto Networks PAN-OS may allow an authenticated low privileged non-superuser custom role user to elevate privileges and become superuser. This issue affects PAN-OS 7.1 versions prior to 7.1.25; 8.0 versions prior to 8.0.20; 8.1 versions prior to 8.1.11; 9.0 versions prior to 9.0.5. PAN-OS version 7.0 and prior EOL versions hav

CVE-2019-1559 [MEDIUM] CWE-325 OpenSSL vulnerability CVE-2019-1559 has been resolved in PAN-OS OpenSSL vulnerability CVE-2019-1559 has been resolved in PAN-OS The OpenSSL library has been updated in PAN-OS to resolve CVE-2019-1559. This is a cryptographic vulnerability that under certain situations may allow a remote attacker to decrypt data by observing server responses to different types of errors. This issue affects Palo Alto Networks PAN-OS 7.1 versions prior to 7.1.25, 8.0 versions prior t

CVE-2019-1580 [CRITICAL] CWE-119 Memory Corruption in PAN-OS Memory Corruption in PAN-OS Palo Alto Networks is aware of a memory corruption vulnerability in PAN-OS (Ref: # PAN-123603/CVE-2019-1580). Successful exploitation will allow a remote, unauthenticated user to craft a message to Secure Shell Daemon (SSHD) and corrupt arbitrary memory. This issue affects PAN-OS 7.1.24 and earlier, PAN-OS 8.0.19 and earlier, PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier. Affected products: PAN-OS

CVE-2019-1581 [CRITICAL] CWE-20 Remote code execution in PAN-OS SSH management interface Remote code execution in PAN-OS SSH management interface Palo Alto Networks is aware of a remote code execution vulnerability in the PAN-OS SSH device management interface that can lead to unauthenticated remote users with network access to the SSH management interface gaining root access to PAN-OS. (Ref: # PAN-123564/ CVE-2019-1581). Successful exploitation will allow a remote, unauthenticated user to exec

CVE-2019-1582 [HIGH] CWE-119 Memory Corruption in PAN-OS Memory Corruption in PAN-OS Palo Alto Networks is aware of a memory corruption vulnerability in PAN-OS. (Ref: # PAN-123700/ CVE-2019-1582). Successful exploitation of this issue may allow an administrative user to cause arbitrary memory corruption by rekeying the current client interactive session. This issue affects PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier. PAN-OS 7.1 and 8.0 are NOT affected. Affected products: PAN-OS So

CVE-2019-1579 [HIGH] CWE-20 Remote Code Execution in GlobalProtect Portal/Gateway Interface Remote Code Execution in GlobalProtect Portal/Gateway Interface Palo Alto Networks is aware of the reported remote code execution (RCE) vulnerability in its GlobalProtect portal and GlobalProtect Gateway interface products. The issue is already addressed in prior maintenance releases. (Ref: CVE-2019-1579) Successful exploitation of this issue allows an unauthenticated attacker to execute arbitrary code.

CVE-2019-1576 [HIGH] CWE-77 Command Injection in PAN-OS Command Injection in PAN-OS A command injection vulnerability exists in the Palo Alto Networks PAN-OS Command Line Interface (CLI). (Ref PAN-111872/ CVE-2019-1576) Successful exploitation of this issue may allow an authenticated attacker to gain access to a remote shell in PAN-OS, and potentially run with the escalated user’s permissions. This issue affects PAN-OS 9.0.2 and earlier. PAN-OS 7.1, PAN-OS 8.0 and PAN-OS 8.1 are NOT affected.

CVE-2019-1575 [HIGH] CWE-200 Information Disclosure in PAN-OS Management API Usage Information Disclosure in PAN-OS Management API Usage An Information Disclosure vulnerability exists in PAN-OS Management API usage (Ref # PAN-107239 and PAN-118869 / CVE-2019-1575) Successful exploitation may allow for an authenticated user with read-only privileges to extract the API key of the device and the username/password from the XML API (in PAN-OS) and possibly escalate privileges granted to them. This i

CVE-2019-8912 [HIGH] CWE-416 Privilege Escalation in PAN-OS Privilege Escalation in PAN-OS Palo Alto Networks is aware of a use-after-free (UAF) vulnerability in the Linux kernel's sockfs_setattr. (Ref: PAN-113631/ CVE-2019-8912) Successful exploitation of this issue may allow an unprivileged local user to escalate their privileges on the system. This issue affects PAN-OS 7.1.23 and earlier, PAN-OS 8.0.17 and earlier, PAN-OS 8.1.8 and earlier, and PAN-OS 9.0.2 and earlier. Affected products: P

CVE-2019-11477 [HIGH] CWE-190 PAN-SA-2019-0013 Information about TCP SACK Panic Findings in PAN-OS PAN-SA-2019-0013 Information about TCP SACK Panic Findings in PAN-OS Palo Alto Networks is aware of recent vulnerability disclosures known as TCP SACK Panic vulnerabilities. (Ref: PAN-119745/ CVE-2019-11477, CVE-2019-11478, CVE-2019-11479) Successful CVEs: CVE-2019-11477, CVE-2019-11478, CVE-2019-11479, CVE-2019-5599 Affected products: GlobalProtect, PAN-OS

CVE-2018-12126 [MEDIUM] CWE-200 PAN-SA-2019-0012 Information about Recent Intel Side Channel Vulnerabilities PAN-SA-2019-0012 Information about Recent Intel Side Channel Vulnerabilities Palo Alto Networks has determined that WildFire Appliance (WF-500) and WildFire Cloud are CVEs: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091 Affected products: PAN-OS, Panorama

CVE-2019-1572 [HIGH] CWE-287 Authentication Bypass in PAN-OS Management Web Interface Authentication Bypass in PAN-OS Management Web Interface An Authentication Bypass vulnerability exists in the PAN-OS Management Web Interface. (Ref # PAN-113675, CVE-2019-1572) Successful exploitation of this issue may allow an unauthenticated remote user to access php files. This issue affects Only PAN-OS 9.0.0 Affected products: PAN-OS Solution: PAN-OS 9.0.1 and later Workaround: This issue affects the we

CVE-2018-14634 [HIGH] CWE-190 Privilege Escalation in PAN-OS Privilege Escalation in PAN-OS Palo Alto Networks is aware of an integer overflow vulnerability in the Linux kernel's create_elf_tables() function. (Ref # PAN-105966, CVE-2018-14634) Successful exploitation of this issue may allow an unprivileged local user to escalate their privileges on the system. To successfully exploit this vulnerability, an attacker would need local user account to access CLI, as well as, an unrelated vulnerabi

CVE-2018-18065 [MEDIUM] CWE-476 Denial of Service in PAN-OS Management Interface Denial of Service in PAN-OS Management Interface A Denial of Service vulnerability exists in the SNMP library that affects PAN-OS Management Interface. (Ref # PAN-106922, CVE-2018-18065). Successful exploitation of this issue would allow a remote unauthenticated user to cause the SNMP daemon to crash, resulting in a denial of service. The unauthenticated user would already have to have access to the management inte

CVE-2019-1569 [MEDIUM] CWE-79 PAN-SA-2019-0004 Cross-Site Scripting in Expedition Migration Tool PAN-SA-2019-0004 Cross-Site Scripting in Expedition Migration Tool Three cross-site scripting (XSS) vulnerabilities exist in the Palo Alto Networks Migration Tool (“Expedition”). (Ref # MT-926/ CVE-2019-1569; MT-927/ CVE-2019-1570; MT-928, MT-929/ CVE-2019-1571) CVE-2019-1569: Successful CVEs: CVE-2019-1569, CVE-2019-1570, CVE-2019-1571 Affected products: PAN-OS