Lucene search

Palo Alto Networks Product Security Incident Response TeamPA-CVE-2020-1993

HistoryMay 13, 2020 - 4:00 p.m.

PAN-OS: GlobalProtect Portal PHP session fixation vulnerability

2020-05-1316:00:00

Palo Alto Networks Product Security Incident Response Team

securityadvisories.paloaltonetworks.com

5.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

22.9%

JSON

The GlobalProtect Portal feature in PAN-OS does not set a new session identifier after a successful user login, which allows session fixation attacks, if an attacker is able to control a user’s session ID.

Work around:
There are no known workarounds for this issue.

CPENameOperatorVersion
pan-oslt8.1.14
pan-oslt9.0.8
pan-oseq8.0.*
pan-oseq7.1.*

Name	Operator	Version
pan-os	lt	8.1.14
pan-os	lt	9.0.8
pan-os	eq	8.0.*
pan-os	eq	7.1.*

References

security.paloaltonetworks.com/CVE-2020-1993

5.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

22.9%

JSON

Related for PA-CVE-2020-1993