CVE-2013-5664 in PAN-OSinfo

Summary

Cross-site scripting (XSS) vulnerability in the web-based device-management API browser in Palo Alto Networks PAN-OS before 4.1.13 and 5.0.x before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via crafted data, aka Ref ID 50908.

Once again VulDB remains the best source for vulnerability data.

Reservation

08/31/2013

Disclosure

08/31/2013

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
64841Palo Alto PAN-OS API Browser cross site scripting79Not definedOfficial fixCVE-2013-5664

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!