Lucene search

[email protected]CVE-2020-1999

HistoryNov 12, 2020 - 12:15 a.m.

CVE-2020-1999

2020-11-1200:15:10

CWE-754

[email protected]

web.nvd.nist.gov

cve-2020

pan-os

vulnerability

threat detection

palo alto network

nvd

cve-2020-1999

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.0%

JSON

A vulnerability exists in the Palo Alto Network PAN-OS signature-based threat detection engine that allows an attacker to communicate with devices in the network in a way that is not analyzed for threats by sending data through specifically crafted TCP packets. This technique evades signature-based threat detection. This issue impacts: PAN-OS 8.1 versions earlier than 8.1.17; PAN-OS 9.0 versions earlier than 9.0.11; PAN-OS 9.1 versions earlier than 9.1.5; All versions of PAN-OS 7.1 and PAN-OS 8.0.

Affected configurations

NVD

Node

paloaltonetworkspan-osRange7.1.0–7.1.26

paloaltonetworkspan-osRange8.0.0–8.0.20

paloaltonetworkspan-osRange8.1.0–8.1.17

paloaltonetworkspan-osRange9.0.0–9.0.11

paloaltonetworkspan-osRange9.1.0–9.1.5

CPENameOperatorVersion
paloaltonetworks:pan-ospaloaltonetworks pan-osle7.1.26
paloaltonetworks:pan-ospaloaltonetworks pan-osle8.0.20
paloaltonetworks:pan-ospaloaltonetworks pan-oslt8.1.17
paloaltonetworks:pan-ospaloaltonetworks pan-oslt9.0.11
paloaltonetworks:pan-ospaloaltonetworks pan-oslt9.1.5

CPE	Name	Operator	Version
paloaltonetworks:pan-os	paloaltonetworks pan-os	le	7.1.26
paloaltonetworks:pan-os	paloaltonetworks pan-os	le	8.0.20
paloaltonetworks:pan-os	paloaltonetworks pan-os	lt	8.1.17
paloaltonetworks:pan-os	paloaltonetworks pan-os	lt	9.0.11
paloaltonetworks:pan-os	paloaltonetworks pan-os	lt	9.1.5

CNA Affected

[
  {
    "product": "PAN-OS",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "status": "affected",
        "version": "7.1.*"
      },
      {
        "status": "affected",
        "version": "8.0.*"
      },
      {
        "status": "unaffected",
        "version": "10.0.*"
      },
      {
        "changes": [
          {
            "at": "8.1.17",
            "status": "unaffected"
          }
        ],
        "lessThan": "8.1.17",
        "status": "affected",
        "version": "8.1",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "9.0.11",
            "status": "unaffected"
          }
        ],
        "lessThan": "9.0.11",
        "status": "affected",
        "version": "9.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "9.1.5",
            "status": "unaffected"
          }
        ],
        "lessThan": "9.1.5",
        "status": "affected",
        "version": "9.1",
        "versionType": "custom"
      }
    ]
  }
]

References

security.paloaltonetworks.com/CVE-2020-1999

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.0%

JSON

Related for CVE-2020-1999

nvd1 paloalto1 nessus1 prion1 cvelist1