Lucene search

Palo Alto Networks Product Security Incident Response TeamPA-CVE-2023-6793

HistoryDec 13, 2023 - 5:00 p.m.

PAN-OS: XML API Keys Revoked by Read-Only PAN-OS Administrator

2023-12-1317:00:00

Palo Alto Networks Product Security Incident Response Team

securityadvisories.paloaltonetworks.com

pan-os

vulnerability

xml api

privilege management

palo alto networks

authenticated

read-only

administrator

2.7 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.3%

JSON

An improper privilege management vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-only administrator to revoke active XML API keys from the firewall and disrupt XML API usage.

Work around:
This issue requires the attacker to have authenticated access to the PAN-OS XML API. You can mitigate the impact of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at https://docs.paloaltonetworks.com/best-practices.

CPENameOperatorVersion
pan-oslt9.0.17-h4
pan-oslt9.1.17
pan-oslt10.1.11
pan-oslt10.2.5
pan-oslt11.0.2
pan-oseqAll

Name	Operator	Version
pan-os	lt	9.0.17-h4
pan-os	lt	9.1.17
pan-os	lt	10.1.11
pan-os	lt	10.2.5
pan-os	lt	11.0.2
pan-os	eq	All

References

security.paloaltonetworks.com/CVE-2023-3287

2.7 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.3%

JSON

Related for PA-CVE-2023-6793