Lucene search
HistoryAug 31, 2013 - 5:55 p.m.
CVE-2012-6604
cve-2012-6604
palo alto networks
pan-os
device-management
command-line interface
remote code execution
ref id 35249
vulnerability
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.1%
The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.11 and 4.0.x before 4.0.9 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka Ref ID 35249.
Affected configurations
Node
paloaltonetworkspan-osRange≤3.1.10
ORpaloaltonetworkspan-osMatch3.1.9
ORpaloaltonetworkspan-osMatch4.0.0
ORpaloaltonetworkspan-osMatch4.0.1
ORpaloaltonetworkspan-osMatch4.0.2
ORpaloaltonetworkspan-osMatch4.0.3
ORpaloaltonetworkspan-osMatch4.0.4
ORpaloaltonetworkspan-osMatch4.0.5
ORpaloaltonetworkspan-osMatch4.0.6
ORpaloaltonetworkspan-osMatch4.0.7
ORpaloaltonetworkspan-osMatch4.0.8
Related
prion
prion
Design/Logic Flaw
2013-08-31 17:55:00
cvelist
cvelist
CVE-2012-6604
2013-08-31 17:00:00
paloalto
paloalto
Command Injection Vulnerability
2012-04-27 23:30:00
nvd
nvd
CVE-2012-6604
2013-08-31 17:55:03
nessus
nessus
Palo Alto Networks PAN-OS < 3.1.11 / 4.0.x < 4.0.9 Multiple Vulnerabilities
2014-03-05 00:00:00
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.1%
Related for CVE-2012-6604