CVE-2020-2039 PAN-OS: Management web interface denial-of-service (DoS) through unauthenticated file upload

🗓️ 09 Sep 2020 16:45:27Reported by palo_altoType

Management web interface denial-of-service vulnerability in PAN-OS due to unauthenticated file uploa

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2020-2039	12 Feb 202112:57	–	circl
CNVD	Palo Alto Networks PAN-OS Resource Management Error Vulnerability	14 Sep 202000:00	–	cnvd
CVE	CVE-2020-2039	9 Sep 202016:45	–	cve
EUVD	EUVD-2020-22065	9 Sep 202016:45	–	euvd
NCSC	Vulnerabilities fixed in PAN-OS	10 Sep 202000:00	–	ncsc
NVD	CVE-2020-2039	9 Sep 202017:15	–	nvd
OSV	CVE-2020-2039	9 Sep 202017:15	–	osv
Palo Alto Networks	PAN-OS: Management web interface denial-of-service (DoS) through unauthenticated file upload	9 Sep 202016:00	–	paloalto
Tenable Nessus	Palo Alto Networks PAN-OS 8.1.x < 8.1.16 / 9.0.x < 9.0.10 / 9.1.x < 9.1.4 / 10.0.x < 10.0.1 DoS	11 Sep 202000:00	–	nessus
Prion	Denial of service	9 Sep 202017:15	–	prion

[
  {
    "product": "PAN-OS",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "changes": [
          {
            "at": "9.1.4",
            "status": "unaffected"
          }
        ],
        "lessThan": "9.1.4",
        "status": "affected",
        "version": "9.1",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "8.1.16",
            "status": "unaffected"
          }
        ],
        "lessThan": "8.1.16",
        "status": "affected",
        "version": "8.1",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "9.0.10",
            "status": "unaffected"
          }
        ],
        "lessThan": "9.0.10",
        "status": "affected",
        "version": "9.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "10.0.1",
            "status": "unaffected"
          }
        ],
        "lessThan": "10.0.1",
        "status": "affected",
        "version": "10.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
security	www.security.paloaltonetworks.com/CVE-2020-2039

09 Sep 2020 16:45Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.15.3

EPSS0.46383

CWE-400