Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.PALO_ALTO_CVE-2023-6792.NASLHistoryDec 14, 2023 - 12:00 a.m.
Palo Alto Networks PAN-OS 8.1.x < 8.1.24 / 9.0.x < 9.0.17 / 9.1.x < 9.1.15 / 10.0.x < 10.0.12 / 10.1.x < 10.1.6 Vulnerability
2023-12-1400:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
palo alto networks
pan-os
vulnerability
command injection
xml api
limited privileges
cve-2023-6792
firewall
authentication
arbitrary code
6.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
6.8 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
19.0%
The version of Palo Alto Networks PAN-OS running on the remote host is 8.1.x prior to 8.1.24 or 9.0.x prior to 9.0.17 or 9.1.x prior to 9.1.15 or 10.0.x prior to 10.0.12 or 10.1.x prior to 10.1.6. It is, therefore, affected by a vulnerability.
- An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall. (CVE-2023-6792)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(186890);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/11");
script_cve_id("CVE-2023-6792");
script_xref(name:"IAVA", value:"2023-A-0695-S");
script_name(english:"Palo Alto Networks PAN-OS 8.1.x < 8.1.24 / 9.0.x < 9.0.17 / 9.1.x < 9.1.15 / 10.0.x < 10.0.12 / 10.1.x < 10.1.6 Vulnerability");
script_set_attribute(attribute:"synopsis", value:
"The remote PAN-OS host is affected by a vulnerability");
script_set_attribute(attribute:"description", value:
"The version of Palo Alto Networks PAN-OS running on the remote host is 8.1.x prior to 8.1.24 or 9.0.x prior to 9.0.17 or
9.1.x prior to 9.1.15 or 10.0.x prior to 10.0.12 or 10.1.x prior to 10.1.6. It is, therefore, affected by a
vulnerability.
- An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an
authenticated API user to disrupt system processes and potentially execute arbitrary code with limited
privileges on the firewall. (CVE-2023-6792)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://security.paloaltonetworks.com/CVE-2023-3286");
script_set_attribute(attribute:"solution", value:
"Upgrade to PAN-OS 8.1.24 / 9.0.17 / 9.1.15 / 10.0.12 / 10.1.6 or later");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-6792");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_cwe_id(88);
script_set_attribute(attribute:"vuln_publication_date", value:"2023/12/13");
script_set_attribute(attribute:"patch_publication_date", value:"2023/12/13");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/12/14");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"combined");
script_set_attribute(attribute:"cpe", value:"cpe:/o:paloaltonetworks:pan-os");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"II");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Palo Alto Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("palo_alto_version.nbin");
script_require_keys("Host/Palo_Alto/Firewall/Version", "Host/Palo_Alto/Firewall/Full_Version", "Host/Palo_Alto/Firewall/Source", "Settings/ParanoidReport");
exit(0);
}
include('vcf.inc');
include('vcf_extras.inc');
vcf::palo_alto::initialize();
var app_name = 'Palo Alto Networks PAN-OS';
var app_info = vcf::get_app_info(app:app_name, kb_ver:'Host/Palo_Alto/Firewall/Full_Version', kb_source:'Host/Palo_Alto/Firewall/Source');
if (report_paranoia < 2) audit(AUDIT_PARANOID);
var constraints = [
{ 'min_version' : '8.1.0', 'fixed_version' : '8.1.24' },
{ 'min_version' : '9.0.0', 'fixed_version' : '9.0.17' },
{ 'min_version' : '9.1.0', 'fixed_version' : '9.1.15' },
{ 'min_version' : '10.0.0', 'fixed_version' : '10.0.12' },
{ 'min_version' : '10.1.0', 'fixed_version' : '10.1.6' }
];
vcf::check_version_and_report(
app_info:app_info,
constraints:constraints,
severity:SECURITY_WARNING
);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| paloaltonetworks | pan-os | cpe:/o:paloaltonetworks:pan-os |
Related
paloalto
paloalto
PAN-OS: OS Command Injection Vulnerability in the XML API
2023-12-13 17:00:00
cvelist
cvelist
CVE-2023-6792 PAN-OS: OS Command Injection Vulnerability in the XML API
2023-12-13 18:16:18
cve
cve
CVE-2023-6792
2023-12-13 19:15:09
nvd
nvd
CVE-2023-6792
2023-12-13 19:15:09
prion
prion
Command injection
2023-12-13 19:15:00
6.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
6.8 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
19.0%
Related for PALO_ALTO_CVE-2023-6792.NASL