CVE-2021-3034 Cortex XSOAR: Secrets for SAML single sign-on (SSO) integration may be logged in system logs

🗓️ 10 Mar 2021 18:10:13Reported by palo_altoType

Cortex XSOAR: Secrets for SAML SSO integration may be logged in system log

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2021-3034	10 Mar 202120:53	–	circl
CNNVD	Palo Alto Cortex XSOAR 日志信息泄露漏洞	10 Mar 202100:00	–	cnnvd
CVE	CVE-2021-3034	10 Mar 202118:10	–	cve
EUVD	EUVD-2021-26386	7 Oct 202500:30	–	euvd
NVD	CVE-2021-3034	10 Mar 202118:15	–	nvd
OSV	CVE-2021-3034	10 Mar 202118:15	–	osv
Palo Alto Networks	Cortex XSOAR: Secrets for SAML single sign-on (SSO) integration may be logged in system logs	10 Mar 202117:00	–	paloalto
Prion	Design/Logic Flaw	10 Mar 202118:15	–	prion

[
  {
    "product": "Cortex XSOAR",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "changes": [
          {
            "at": "98622",
            "status": "unaffected"
          }
        ],
        "lessThan": "98622",
        "status": "affected",
        "version": "5.5.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "98623",
            "status": "unaffected"
          }
        ],
        "lessThan": "98623",
        "status": "affected",
        "version": "6.0.2",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "830029",
            "status": "unaffected"
          }
        ],
        "lessThan": "830029",
        "status": "affected",
        "version": "6.0.1",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "848144",
            "status": "unaffected"
          }
        ],
        "lessThan": "848144",
        "status": "affected",
        "version": "6.1.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
security	www.security.paloaltonetworks.com/CVE-2021-3034

11 Mar 2021 14:22Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.15.1

EPSS0.00168

CWE-532