Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2022 and is owned by Tenable, Inc. or an Affiliate thereof.PALO_ALTO_PAN-OS_6_1_19.NASL
HistoryDec 15, 2017 - 12:00 a.m.

Palo Alto Networks PAN-OS 6.1.x < 6.1.19 Multiple Vulnerabilities

2017-12-1500:00:00
This script is Copyright (C) 2017-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
37
JSON

The version of Palo Alto Networks PAN-OS running on the remote host is 6.1.x prior to 6.1.19. It is, therefore, affected by multiple vulnerabilities.

#
# (C) Tenable Network Security, Inc.
#

include('compat.inc');

if (description)
{
  script_id(105295);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/08/19");

  script_cve_id(
    "CVE-2017-15940",
    "CVE-2017-15942",
    "CVE-2017-15943",
    "CVE-2017-15944"
  );
  script_bugtraq_id(
    102074,
    102075,
    102076,
    102079
  );
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/09/08");

  script_name(english:"Palo Alto Networks PAN-OS 6.1.x < 6.1.19 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote PAN-OS host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Palo Alto Networks PAN-OS running on the remote host is
6.1.x prior to 6.1.19. It is, therefore, affected by multiple
vulnerabilities.");
  # https://securityadvisories.paloaltonetworks.com/Home/Detail/96
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?06c321db");
  # https://securityadvisories.paloaltonetworks.com/Home/Detail/99
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?2462d7e7");
  # https://securityadvisories.paloaltonetworks.com/Home/Detail/102
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d9a7eb24");
  # https://securityadvisories.paloaltonetworks.com/Home/Detail/105
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?bbe4facb");
  # https://www.paloaltonetworks.com/documentation/61/pan-os/pan-os-release-notes/pan-os-6-1-19-addressed-issues
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?fa24076a");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Palo Alto Networks PAN-OS version 6.1.19 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-15940");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2017-15944");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Palo Alto Networks readSessionVarsFromFile() Session Corruption');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/12/05");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/12/05");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/12/15");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:paloaltonetworks:pan-os");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Palo Alto Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2017-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("palo_alto_version.nbin");
  script_require_keys("Host/Palo_Alto/Firewall/Version", "Host/Palo_Alto/Firewall/Full_Version", "Host/Palo_Alto/Firewall/Source");

  exit(0);
}

include('vcf.inc');
include('vcf_extras.inc');

vcf::palo_alto::initialize();

app_name = 'Palo Alto Networks PAN-OS';

app_info = vcf::get_app_info(app:app_name, kb_ver:'Host/Palo_Alto/Firewall/Full_Version', kb_source:'Host/Palo_Alto/Firewall/Source');

vcf::check_granularity(app_info:app_info, sig_segments:2);

constraints = [
  { 'min_version' : '6.1', 'fixed_version' : '6.1.19' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
paloaltonetworkspan-oscpe:/o:paloaltonetworks:pan-os

Related

nessus 6
prion 4
cve 4
paloalto 4
nuclei 1
zdt 3
packetstorm 3
exploitpack 1
checkpoint_advisories 1
seebug 1
attackerkb 1
cisa_kev 1
exploitdb 1
malwarebytes 1
thn 1
nessus
nessus
Palo Alto Networks PAN-OS 7.0.x < 7.0.19 Multiple Vulnerabilities
2017-12-15 00:00:00
Palo Alto Networks PAN-OS 7.1.x < 7.1.14 Multiple Vulnerabilities
2017-12-15 00:00:00
Palo Alto Networks PAN-OS 8.0.x < 8.0.6 Multiple Vulnerabilities
2017-12-15 00:00:00
prion
prion
Server side request forgery (ssrf)
2017-12-11 17:29:00
Code injection
2017-12-11 17:29:00
Design/Logic Flaw
2017-12-11 17:29:00
cve
cve
CVE-2017-15943
2017-12-11 17:29:00
CVE-2017-15940
2017-12-11 17:29:00
CVE-2017-15942
2017-12-11 17:29:00
paloalto
paloalto
Command Injection in PAN-OS
2017-12-06 00:15:10
Denial of Service Against GlobalProtect
2017-12-06 00:00:00
Server-Side Request Forgery in PAN-OS
2017-12-06 00:05:01
nuclei
nuclei
Palo Alto Network PAN-OS - Remote Code Execution
2021-06-18 20:45:44
zdt
zdt
Palo Alto Networks - readSessionVarsFromFile() Session Corruption Exploit
2018-05-09 00:00:00
Palo Alto Networks PAN-OS Cookie Injection Vulnerability
2017-12-22 00:00:00
Palo Alto Networks Firewalls Remote Root Code Execution Vulnerability
2017-12-14 00:00:00
packetstorm
packetstorm
Palo Alto Networks readSessionVarsFromFile() Session Corruption
2018-05-07 00:00:00
Palo Alto Networks PAN-OS Cookie Injection
2017-12-19 00:00:00
Palo Alto Networks Firewalls Remote Root Code Execution
2017-12-13 00:00:00
exploitpack
exploitpack
Palo Alto Networks Firewalls - Root Remote Code Execution
2017-12-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Paloaltonetworks Panos Remote Code Execution (CVE-2017-15944) - Ver2
2018-11-22 00:00:00
seebug
seebug
Palo Alto Networks firewalls remote root code execution(CVE-2017-15944)
2017-12-14 00:00:00
attackerkb
attackerkb
CVE-2017-15944
2017-12-11 00:00:00
cisa_kev
cisa_kev
Palo Alto Networks PAN-OS Remote Code Execution Vulnerability
2022-08-18 00:00:00
exploitdb
exploitdb
Palo Alto Networks Firewalls - Root Remote Code Execution
2017-12-14 00:00:00
malwarebytes
malwarebytes
CISA wants you to patch these actively exploited vulnerabilities before September 8
2022-08-22 15:00:00
thn
thn
CISA Adds 7 New Actively Exploited Vulnerabilities to Catalog
2022-08-20 14:19:00
JSON
Related for PALO_ALTO_PAN-OS_6_1_19.NASL
nessus6prion4cve4paloalto4nuclei1zdt3packetstorm3exploitpack1checkpoint_advisories1seebug1attackerkb1cisa_kev1exploitdb1malwarebytes1thn1