Paloaltonetworks PAN-OS vulnerabilities

CVE-2020-2021 [CRITICAL] CWE-347 CVE-2020-2021: When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option is disabled (unchecked), improper verification of signatures in PAN-OS SAML authentication enables an unauthenticated network-based attacker to access protected resources. The attacker must have network access to the vulner

CVE-2020-2028 [HIGH] CWE-78 CVE-2020-2028: An OS Command Injection vulnerability in PAN-OS management server allows authenticated administrator An OS Command Injection vulnerability in PAN-OS management server allows authenticated administrators to execute arbitrary OS commands with root privileges when uploading a new certificate in FIPS-CC mode. This issue affects: All versions of PAN-OS 7.1 and PAN-OS 8.0; PAN-OS 8.1 versions earlier than PAN-OS 8.1.13; PAN-OS 9.0 versions earlier than PAN-OS

CVE-2020-2029 [HIGH] CWE-78 CVE-2020-2029: An OS Command Injection vulnerability in the PAN-OS web management interface allows authenticated ad An OS Command Injection vulnerability in the PAN-OS web management interface allows authenticated administrators to execute arbitrary OS commands with root privileges by sending a malicious request to generate new certificates for use in the PAN-OS configuration. This issue affects: All versions of PAN-OS 8.0; PAN-OS 7.1 versions earlier than PAN-OS 7.1.

CVE-2020-2027 [HIGH] CWE-121 CVE-2020-2027: A buffer overflow vulnerability in the authd component of the PAN-OS management server allows authen A buffer overflow vulnerability in the authd component of the PAN-OS management server allows authenticated administrators to disrupt system processes and potentially execute arbitrary code with root privileges. This issue affects: All versions of PAN-OS 7.1 and PAN-OS 8.0; PAN-OS 8.1 versions earlier than PAN-OS 8.1.13; PAN-OS 9.0 versions earlier than

CVE-2020-2001 [CRITICAL] CWE-123 CVE-2020-2001: An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT pr An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT processing logic that allows an unauthenticated user with network access to PAN-OS management interface to write attacker supplied file on the system and elevate privileges. This issue affects: All PAN-OS 7.1 Panorama and 8.0 Panorama versions; PAN-OS 8

CVE-2020-2018 [CRITICAL] CWE-287 CVE-2020-2018: An authentication bypass vulnerability in the Panorama context switching feature allows an attacker An authentication bypass vulnerability in the Panorama context switching feature allows an attacker with network access to a Panorama's management interface to gain privileged access to managed firewalls. An attacker requires some knowledge of managed firewalls to exploit this issue. This issue does not affect Panorama configured with custom certific

CVE-2020-2016 [HIGH] CWE-377 CVE-2020-2016: A race condition due to insecure creation of a file in a temporary directory vulnerability in PAN-OS A race condition due to insecure creation of a file in a temporary directory vulnerability in PAN-OS allows for root privilege escalation from a limited linux user account. This allows an attacker who has escaped the restricted shell as a low privilege administrator, possibly by exploiting another vulnerability, to escalate privileges to become root use

CVE-2020-2013 [HIGH] CWE-319 CVE-2020-2013: A cleartext transmission of sensitive information vulnerability in Palo Alto Networks PAN-OS Panoram A cleartext transmission of sensitive information vulnerability in Palo Alto Networks PAN-OS Panorama that discloses an authenticated PAN-OS administrator's PAN-OS session cookie. When an administrator issues a context switch request into a managed firewall with an affected PAN-OS Panorama version, their PAN-OS session cookie is transmitted over clearte

CVE-2020-2009 [HIGH] CWE-73 CVE-2020-2009: An external control of filename vulnerability in the SD WAN component of Palo Alto Networks PAN-OS P An external control of filename vulnerability in the SD WAN component of Palo Alto Networks PAN-OS Panorama allows an authenticated administrator to send a request that results in the creation and write of an arbitrary file on all firewalls managed by the Panorama. In some cases this results in arbitrary code execution with root permissions. This issue a

CVE-2020-2011 [HIGH] CWE-20 CVE-2020-2011: An improper input validation vulnerability in the configuration daemon of Palo Alto Networks PAN-OS An improper input validation vulnerability in the configuration daemon of Palo Alto Networks PAN-OS Panorama allows for a remote unauthenticated user to send a specifically crafted registration request to the device that causes the configuration service to crash. Repeated attempts to send this request result in denial of service to all PAN-OS Panorama ser

CVE-2020-2010 [HIGH] CWE-78 CVE-2020-2010: An OS command injection vulnerability in PAN-OS management interface allows an authenticated adminis An OS command injection vulnerability in PAN-OS management interface allows an authenticated administrator to execute arbitrary OS commands with root privileges. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7.

CVE-2020-2014 [HIGH] CWE-78 CVE-2020-2014: An OS Command Injection vulnerability in PAN-OS management server allows authenticated users to inje An OS Command Injection vulnerability in PAN-OS management server allows authenticated users to inject and execute arbitrary shell commands with root privileges. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7.

CVE-2020-2012 [HIGH] CWE-611 CVE-2020-2012: Improper restriction of XML external entity reference ('XXE') vulnerability in Palo Alto Networks Pa Improper restriction of XML external entity reference ('XXE') vulnerability in Palo Alto Networks Panorama management service allows remote unauthenticated attackers with network access to the Panorama management interface to read arbitrary files on the system. This issue affects: All versions of PAN-OS for Panorama 7.1 and 8.0; PAN-OS for Panorama 8.1

CVE-2020-2008 [HIGH] CWE-73 CVE-2020-2008: An OS command injection and external control of filename vulnerability in Palo Alto Networks PAN-OS An OS command injection and external control of filename vulnerability in Palo Alto Networks PAN-OS allows authenticated administrators to execute code with root privileges or delete arbitrary system files and impact the system's integrity or cause a denial of service condition. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions e

CVE-2020-2007 [HIGH] CWE-78 CVE-2020-2007: An OS command injection vulnerability in the management server component of PAN-OS allows an authent An OS command injection vulnerability in the management server component of PAN-OS allows an authenticated user to potentially execute arbitrary commands with root privileges. This issue affects: All PAN-OS 7.1 versions; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7.

CVE-2020-1998 [HIGH] CWE-285 CVE-2020-1998: An improper authorization vulnerability in PAN-OS that mistakenly uses the permissions of local linu An improper authorization vulnerability in PAN-OS that mistakenly uses the permissions of local linux users instead of the intended SAML permissions of the account when the username is shared for the purposes of SSO authentication. This can result in authentication bypass and unintended resource access for the user. This issue affects: PAN-OS 7.1 versio

CVE-2020-2006 [HIGH] CWE-121 CVE-2020-2006: A stack-based buffer overflow vulnerability in the management server component of PAN-OS that allows A stack-based buffer overflow vulnerability in the management server component of PAN-OS that allows an authenticated user to potentially execute arbitrary code with root privileges. This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14.

CVE-2020-2015 [HIGH] CWE-120 CVE-2020-2015: A buffer overflow vulnerability in the PAN-OS management server allows authenticated users to crash A buffer overflow vulnerability in the PAN-OS management server allows authenticated users to crash system processes or potentially execute arbitrary code with root privileges. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions earlier than 9.0.7; PAN-OS 9.1 versions earlier than 9.1.

CVE-2020-2002 [HIGH] CWE-290 CVE-2020-2002: An authentication bypass by spoofing vulnerability exists in the authentication daemon and User-ID c An authentication bypass by spoofing vulnerability exists in the authentication daemon and User-ID components of Palo Alto Networks PAN-OS by failing to verify the integrity of the Kerberos key distribution center (KDC) before authenticating users. This affects all forms of authentication that use a Kerberos authentication profile. A man-in-the-middle t

CVE-2020-1996 [MEDIUM] CWE-862 CVE-2020-1996: A missing authorization vulnerability in the management server component of PAN-OS Panorama allows a A missing authorization vulnerability in the management server component of PAN-OS Panorama allows a remote unauthenticated user to inject messages into the management server ms.log file. This vulnerability can be leveraged to obfuscate an ongoing attack or fabricate log entries in the ms.log file This issue affects: All versions of PAN-OS 7.1 and 8.0