CVE-2019-17437

🗓️ 05 Dec 2019 14:11:11Reported by palo_altoType

Improper auth check in Palo Alto Networks PAN-OS allows non-superuser to elevate privileges (CVE-2019-17437

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2019-17437	7 Mar 202417:11	–	circl
CNVD	Palo Alto Networks PAN-OS Memory Corruption Vulnerability	9 Dec 201900:00	–	cnvd
Cvelist	CVE-2019-17437 PAN-OS: Custom-role users may escalate privileges	5 Dec 201914:11	–	cvelist
EUVD	EUVD-2019-7828	7 Oct 202500:30	–	euvd
NVD	CVE-2019-17437	5 Dec 201915:15	–	nvd
OpenVAS	SUSE: Security Advisory (SUSE-SU-2021:0663-1)	19 Apr 202100:00	–	openvas
Palo Alto Networks	PAN-OS: Custom-role users may escalate privileges	4 Dec 201917:00	–	paloalto
Palo Alto Networks	PAN-OS: Custom-role users may escalate privileges	4 Dec 201917:00	–	paloalto
Tenable Nessus	Palo Alto Networks PAN-OS 1.0 < 7.1.24-h1 / 8.0.x < 8.1.9-h4 / 9.0 < 9.0.3-h3 Vulnerability	13 Dec 201900:00	–	nessus
Tenable Nessus	SUSE SLES12 Security Update : open-iscsi (SUSE-SU-2021:0663-1)	2 Mar 202100:00	–	nessus

NVD

Vulners

Node

paloaltonetworks pan-osRange7.1.0–7.1.25

paloaltonetworks pan-osRange8.0.0–8.0.20

paloaltonetworks pan-osRange8.1.0–8.1.11

paloaltonetworks pan-osRange9.0.0–9.0.5

[
  {
    "product": "PAN-OS",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "lessThanOrEqual": "7.0",
        "status": "unknown",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "7.1.25",
        "status": "affected",
        "version": "7.1",
        "versionType": "custom"
      },
      {
        "lessThan": "8.0.20",
        "status": "affected",
        "version": "8.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.1.11",
        "status": "affected",
        "version": "8.1",
        "versionType": "custom"
      },
      {
        "lessThan": "9.0.5",
        "status": "affected",
        "version": "9.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
securityadvisories	www.securityadvisories.paloaltonetworks.com/Home/Detail/159

21 Nov 2024 04:32Current

7.7High risk

Vulners AI Score7.7

CVSS 24.6

CVSS 3.17.8

EPSS0.00127