Design/Logic Flaw

2018-07-0321:29:00

PRIOn knowledge base

www.prio-n.com

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.2%

JSON

The PAN-OS management web interface page in PAN-OS 6.1.20 and earlier, PAN-OS 7.1.16 and earlier, PAN-OS 8.0.9 and earlier may allow an attacker to delete files in the system via specific request parameters.

CPENameOperatorVersion
pan-osgt6.0.0
pan-osle6.1.20
pan-osge7.1.0
pan-osle7.1.16
pan-osgt8.0.0
pan-osle8.0.9

Name	Operator	Version
pan-os	gt	6.0.0
pan-os	le	6.1.20
pan-os	ge	7.1.0
pan-os	le	7.1.16
pan-os	gt	8.0.0
pan-os	le	8.0.9

References

www.securityfocus.com/bid/104676

www.securitytracker.com/id/1041242

security.paloaltonetworks.com/CVE-2018-9242