Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
paloaltoPalo Alto Networks Product Security Incident Response TeamPA-CVE-2023-6792
HistoryDec 13, 2023 - 5:00 p.m.

PAN-OS: OS Command Injection Vulnerability in the XML API

2023-12-1317:00:00
Palo Alto Networks Product Security Incident Response Team
securityadvisories.paloaltonetworks.com
8
pan-os
command injection
xml api
vulnerability
threat prevention
threat id 91715
administrative access
best practices

CVSS3

7.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

19.6%

JSON

An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.

Work around:
Customers with a Threat Prevention subscription can block attacks for this vulnerability by enabling Threat ID 91715 (introduced in Applications and Threats content update 8473).

This issue requires the attacker to have authenticated access to the PAN-OS XML API. You can mitigate the impact of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at https://docs.paloaltonetworks.com/best-practices.

Affected configurations

Vulners
Node
softwarepan-osRange<8.1.24
OR
softwarepan-osRange<9.0.17
OR
softwarepan-osRange<9.1.15
OR
softwarepan-osRange<10.1.6
OR
softwarepan-osRange<10.0.12
VendorProductVersionCPE
softwarepan-os*cpe:2.3:a:software:pan-os:*:*:*:*:*:*:*:*

Related

nessus 1
cvelist 2
prion 1
nvd 2
cve 2
vulnrichment 1
osv 1
veracode 1
nessus
nessus
Palo Alto Networks PAN-OS 8.1.x < 8.1.24 / 9.0.x < 9.0.17 / 9.1.x < 9.1.15 / 10.0.x < 10.0.12 / 10.1.x < 10.1.6 Vulnerability
2023-12-14 00:00:00
cvelist
cvelist
CVE-2023-6792 PAN-OS: OS Command Injection Vulnerability in the XML API
2023-12-13 18:16:18
CVE-2023-3286 A BOLA vulnerability in POST /secretaries in EasyAppointments < 1.5.0
2024-07-09 10:20:20
prion
prion
Command injection
2023-12-13 19:15:00
nvd
nvd
CVE-2023-6792
2023-12-13 19:15:09
CVE-2023-3286
2024-07-09 11:15:12
cve
cve
CVE-2023-6792
2023-12-13 19:15:09
CVE-2023-3286
2024-07-09 11:15:12
vulnrichment
vulnrichment
CVE-2023-3286 A BOLA vulnerability in POST /secretaries in EasyAppointments < 1.5.0
2024-07-09 10:20:20
osv
osv
CVE-2023-3286
2024-07-09 11:15:12
veracode
veracode
Authorization Bypass
2024-07-11 10:50:22

CVSS3

7.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

19.6%

JSON
Related for PA-CVE-2023-6792
nessus1cvelist2prion1nvd2cve2vulnrichment1osv1veracode1