Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.PALO_ALTO_PAN-SA-2019-0020.NASL
HistoryJul 19, 2019 - 12:00 a.m.

Palo Alto Networks PAN-OS 7.1.x < 7.1.19 / 8.0.x < 8.0.12 / 8.1.x < 8.1.3 Vulnerability

2019-07-1900:00:00
This script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
JSON

The version of Palo Alto Networks PAN-OS running on the remote host is 7.1.x prior to 7.1.19 or 8.0.x prior to 8.0.12 or 8.1.x prior to 8.1.3. It is, therefore, affected by a vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#
# (C) Tenable Network Security, Inc.
#

include('compat.inc');

if (description)
{
  script_id(126787);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/25");

  script_cve_id("CVE-2019-1579");
  script_xref(name:"IAVA", value:"0001-A-0012-S");
  script_xref(name:"IAVA", value:"2019-A-0313-S");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/07/10");

  script_name(english:"Palo Alto Networks PAN-OS 7.1.x < 7.1.19 / 8.0.x < 8.0.12 / 8.1.x < 8.1.3 Vulnerability");

  script_set_attribute(attribute:"synopsis", value:
"The remote PAN-OS host is affected by vulnerability");
  script_set_attribute(attribute:"description", value:
"The version of Palo Alto Networks PAN-OS running on the remote host is 7.1.x prior to 7.1.19 or 8.0.x prior to 8.0.12 or
8.1.x prior to 8.1.3. It is, therefore, affected by a vulnerability. Note that Nessus has not tested for this issue but
has instead relied only on the application's self-reported version number.");
  script_set_attribute(attribute:"see_also", value:"https://securityadvisories.paloaltonetworks.com/Home/Detail/158");
  script_set_attribute(attribute:"solution", value:
"Upgrade to PAN-OS 7.1.19 / 8.0.12 / 8.1.3 or later");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-1579");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/07/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/07/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/07/19");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:paloaltonetworks:pan-os");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Palo Alto Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("palo_alto_version.nbin");
  script_require_keys("Host/Palo_Alto/Firewall/Version", "Host/Palo_Alto/Firewall/Full_Version");

  exit(0);
}

include('vcf.inc');

app_name = 'Palo Alto Networks PAN-OS';

app_info = vcf::get_app_info(app:app_name, kb_ver:'Host/Palo_Alto/Firewall/Full_Version', kb_source:'Host/Palo_Alto/Firewall/Source');

constraints = [
  { 'min_version' : '7.1.0', 'max_version' : '7.1.18', 'fixed_version' : '7.1.19' },
  { 'min_version' : '8.0.0', 'max_version' : '8.0.11', 'fixed_version' : '8.0.12' },
  { 'min_version' : '8.1.0', 'max_version' : '8.1.2', 'fixed_version' : '8.1.3' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
VendorProductVersionCPE
paloaltonetworkspan-oscpe:/o:paloaltonetworks:pan-os

Related

cve 1
prion 1
cvelist 1
cisa_kev 1
attackerkb 2
checkpoint_advisories 1
threatpost 2
paloalto 1
thn 1
cisa 1
cve
cve
CVE-2019-1579
2019-07-19 22:15:00
prion
prion
Remote code execution
2019-07-19 22:15:00
cvelist
cvelist
CVE-2019-1579
2019-07-19 21:12:19
cisa_kev
cisa_kev
Palo Alto Networks PAN-OS Remote Code Execution Vulnerability
2022-01-10 00:00:00
attackerkb
attackerkb
CVE-2019-1579
2019-07-19 00:00:00
CVE-2019-1579 RCE in PAN-OS with GlobalProtect Portal or Gateway Interface
2020-07-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Palo Alto Networks GlobalProtect SSL VPN Remote Code Execution (CVE-2019-1579)
2019-07-24 00:00:00
threatpost
threatpost
Critical RCE Flaw in Palo Alto Gateways Hits Uber
2019-07-22 20:52:06
APT Groups Exploiting Flaws in Unpatched VPNs, Officials Warn
2019-10-08 12:44:16
paloalto
paloalto
Remote Code Execution in GlobalProtect Portal/Gateway Interface
2019-07-18 20:39:00
thn
thn
Iranian Hackers Exploiting VPN Flaws to Backdoor Organizations Worldwide
2020-02-18 15:06:00
cisa
cisa
CISA Adds 15 Known Exploited Vulnerabilities to Catalog
2022-01-10 00:00:00
JSON
Related for PALO_ALTO_PAN-SA-2019-0020.NASL
cve1prion1cvelist1cisa_kev1attackerkb2checkpoint_advisories1threatpost2paloalto1thn1cisa1