CVE-2020-2016 in PAN-OSinformazioni

Riassunto

di MITRE

A race condition due to insecure creation of a file in a temporary directory vulnerability in PAN-OS allows for root privilege escalation from a limited linux user account. This allows an attacker who has escaped the restricted shell as a low privilege administrator, possibly by exploiting another vulnerability, to escalate privileges to become root user.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsabile

Palo Alto Networks, Inc.

Prenotare

04/12/2019

Moderazione

accettato

Voce

VDB-155222

CPE

pronto

CWE

CWE-377 (confermato)

CVSS

7.0 (NVD)

EPSS

0.00568

KEV

Attività

molto basso

Settore

Hostingprovider, Homeoffice, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-2016
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-2016
CVE Details	https://www.cvedetails.com/cve/CVE-2020-2016/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!