PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces

2021-11-10T17:00:00
ID PA-CVE-2021-3064
Type paloalto
Reporter Palo Alto Networks Product Security Incident Response Team
Modified 2021-11-10T17:00:00

Description

A memory corruption vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to disrupt system processes and potentially execute arbitrary code with root privileges. The attacker must have network access to the GlobalProtect interface to exploit this issue.

Work around: Enable signatures for Unique Threat IDs 91820 and 91855 on traffic destined for GlobalProtect portal and gateway interfaces to block attacks against CVE-2021-3064.

It is not necessary to enable SSL decryption to detect and block attacks against this issue.