Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-8r53-w527-fcqp

Опубликовано: 11 апр. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 7.1

Описание

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed.

Cloud NGFW and Prisma® Access are not affected by this vulnerability.

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed.

Cloud NGFW and Prisma® Access are not affected by this vulnerability.

EPSS

Процентиль: 40%
0.00181
Низкий

7.1 High

CVSS4

Дефекты

CWE-78

Связанные уязвимости

nvd
4 месяца назад

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed. Cloud NGFW and Prisma® Access are not affected by this vulnerability.

CVSS3: 6.7
fstec
4 месяца назад

Уязвимость операционной системы PAN-OS, связанная с непринятием мер по нейтрализации специальных элементов, позволяющая нарушителю выполнить произвольные команды

EPSS

Процентиль: 40%
0.00181
Низкий

7.1 High

CVSS4

Дефекты

CWE-78