Denial of Service Against GlobalProtect

2017-12-06T00:00:00
ID PAN-SA-2017-0025
Type paloalto
Reporter Palo Alto Networks Product Security Incident Response Team
Modified 2017-12-06T00:00:00

Description

A vulnerability exists in PAN-OS that could lead to denying access to GlobalProtect portal, GlobalProtect gateway or preventing configuration commits. (Ref # PAN-78127 / CVE-2017-15942) PAN-OS contains a vulnerability in GlobalProtect that may allow a non-authenticated third party to mount a Denial of Service attack against the GlobalProtect portal, GlobalProtect gateway or preventing configuration commits. This vulnerability is only available when the GlobalProtect gateway or portal is running. This issue affects PAN-OS 6.1.18 and earlier, PAN-OS 7.0.18 and earlier, PAN-OS 7.1.12 and earlier, PAN-OS 8.0.5 and earlier

Work around: This vulnerability is only available when the GlobalProtect gateway or portal is running.