Lucene search

[email protected]CVE-2021-3051

HistorySep 08, 2021 - 5:15 p.m.

CVE-2021-3051

2021-09-0817:15:11

CWE-347

[email protected]

web.nvd.nist.gov

cve-2021-3051

vulnerability

cortex xsoar

saml authentication

cryptographic signature

unauthorized access

palo alto networks

nvd

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.7%

JSON

An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR SAML authentication that enables an unauthenticated network-based attacker with specific knowledge of the Cortex XSOAR instance to access protected resources and perform unauthorized actions on the Cortex XSOAR server. This issue impacts: Cortex XSOAR 5.5.0 builds earlier than 1578677; Cortex XSOAR 6.0.2 builds earlier than 1576452; Cortex XSOAR 6.1.0 builds earlier than 1578663; Cortex XSOAR 6.2.0 builds earlier than 1578666. All Cortex XSOAR instances hosted by Palo Alto Networks are protected from this vulnerability; no additional action is required for these instances.

Affected configurations

NVD

Node

paloaltonetworkscortex_xsoarMatch5.5.0-

paloaltonetworkscortex_xsoarMatch5.5.070066

paloaltonetworkscortex_xsoarMatch5.5.073387

paloaltonetworkscortex_xsoarMatch5.5.075211

paloaltonetworkscortex_xsoarMatch5.5.078518

paloaltonetworkscortex_xsoarMatch5.5.094592

paloaltonetworkscortex_xsoarMatch6.0.2-

paloaltonetworkscortex_xsoarMatch6.0.290947

paloaltonetworkscortex_xsoarMatch6.0.293351

paloaltonetworkscortex_xsoarMatch6.0.294597

paloaltonetworkscortex_xsoarMatch6.0.297682

paloaltonetworkscortex_xsoarMatch6.1.0-

paloaltonetworkscortex_xsoarMatch6.1.01016923

paloaltonetworkscortex_xsoarMatch6.1.01031903

paloaltonetworkscortex_xsoarMatch6.1.01077664

paloaltonetworkscortex_xsoarMatch6.1.01209934

paloaltonetworkscortex_xsoarMatch6.1.01271079

paloaltonetworkscortex_xsoarMatch6.1.0848144

paloaltonetworkscortex_xsoarMatch6.2.0-

paloaltonetworkscortex_xsoarMatch6.2.01271082

paloaltonetworkscortex_xsoarMatch6.2.01321594

paloaltonetworkscortex_xsoarMatch6.2.01473927

CPENameOperatorVersion
paloaltonetworks:cortex_xsoarpaloaltonetworks cortex xsoareq5.5.0
paloaltonetworks:cortex_xsoarpaloaltonetworks cortex xsoareq6.0.2
paloaltonetworks:cortex_xsoarpaloaltonetworks cortex xsoareq6.1.0
paloaltonetworks:cortex_xsoarpaloaltonetworks cortex xsoareq6.2.0

CPE	Name	Operator	Version
paloaltonetworks:cortex_xsoar	paloaltonetworks cortex xsoar	eq	5.5.0
paloaltonetworks:cortex_xsoar	paloaltonetworks cortex xsoar	eq	6.0.2
paloaltonetworks:cortex_xsoar	paloaltonetworks cortex xsoar	eq	6.1.0
paloaltonetworks:cortex_xsoar	paloaltonetworks cortex xsoar	eq	6.2.0

CNA Affected

[
  {
    "product": "Cortex XSOAR",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "changes": [
          {
            "at": "1578677",
            "status": "unaffected"
          }
        ],
        "lessThan": "1578677",
        "status": "affected",
        "version": "5.5.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "1576452",
            "status": "unaffected"
          }
        ],
        "lessThan": "1576452",
        "status": "affected",
        "version": "6.0.2",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "1578663",
            "status": "unaffected"
          }
        ],
        "lessThan": "1578663",
        "status": "affected",
        "version": "6.1.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "1578666",
            "status": "unaffected"
          }
        ],
        "lessThan": "1578666",
        "status": "affected",
        "version": "6.2.0",
        "versionType": "custom"
      }
    ]
  }
]

References

security.paloaltonetworks.com/CVE-2021-3051

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.7%

JSON

Related for CVE-2021-3051

paloalto1 veracode1 cvelist1 prion1 nvd1