CVE-2021-3048

🗓️ 11 Aug 2021 17:10:19Reported by palo_altoType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 43 Views

Certain invalid URL entries in EDL cause PAN-OS Do

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2021-3048	11 Aug 202120:50	–	circl
CNNVD	Palo Alto Networks PAN-OS 输入验证错误漏洞	11 Aug 202100:00	–	cnnvd
Cvelist	CVE-2021-3048 PAN-OS: Invalid URLs in an External Dynamic List (EDL) can Lead to Firewall Outage	11 Aug 202117:10	–	cvelist
EUVD	EUVD-2021-26400	7 Oct 202500:30	–	euvd
NCSC	Vulnerabilities fixed in PAN-OS	12 Aug 202100:00	–	ncsc
NVD	CVE-2021-3048	11 Aug 202117:15	–	nvd
OSV	CVE-2021-3048	11 Aug 202117:15	–	osv
Palo Alto Networks	PAN-OS: Invalid URLs in an External Dynamic List (EDL) can Lead to Firewall Outage	11 Aug 202116:00	–	paloalto
Tenable Nessus	Palo Alto Networks PAN-OS 9.0.x < 9.0.14 / 9.1.x < 9.1.9 / 10.0.x < 10.0.5 Vulnerability	12 Aug 202100:00	–	nessus
Prion	Design/Logic Flaw	11 Aug 202117:15	–	prion

NVD

Vulners

Node

paloaltonetworks pan-osRange9.0.0–9.0.14

paloaltonetworks pan-osRange9.1.0–9.1.9

paloaltonetworks pan-osRange10.0.0–10.0.5

[
  {
    "product": "PAN-OS",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "status": "unaffected",
        "version": "10.1.*"
      },
      {
        "status": "unaffected",
        "version": "8.1.*"
      },
      {
        "changes": [
          {
            "at": "9.0.14",
            "status": "unaffected"
          }
        ],
        "lessThan": "9.0.14",
        "status": "affected",
        "version": "9.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "9.1.9",
            "status": "unaffected"
          }
        ],
        "lessThan": "9.1.9",
        "status": "affected",
        "version": "9.1",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "10.0.5",
            "status": "unaffected"
          }
        ],
        "lessThan": "10.0.5",
        "status": "affected",
        "version": "10.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
security	www.security.paloaltonetworks.com/CVE-2020-3048
security	www.security.paloaltonetworks.com/CVE-2021-3048

21 Nov 2024 06:20Current

5.6Medium risk

Vulners AI Score5.6

CVSS 24.3

CVSS 3.15.9

EPSS0.00586

CWE-20