CVE-2021-3058 in PAN-OSinformação

Sumário

de MITRE • 10/11/2021

An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permissions to use XML API the ability to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20-h1; PAN-OS 9.0 versions earlier than PAN-OS 9.0.14-h3; PAN-OS 9.1 versions earlier than PAN-OS 9.1.11-h2; PAN-OS 10.0 versions earlier than PAN-OS 10.0.8; PAN-OS 10.1 versions earlier than PAN-OS 10.1.3. This issue does not impact Prisma Access firewalls.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

06/01/2021

Divulgação

10/11/2021

Moderação

aceite

Entrada

VDB-186492

CPE

pronto

EPSS

0.01649

KEV

não

Atividades

muito baixo

Fontes

Want to know what is going to be exploited?

We predict KEV entries!