Hardcoded credentials

2018-07-0321:29:00

PRIOn knowledge base

www.prio-n.com

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.3%

JSON

The PAN-OS session browser in PAN-OS 6.1.20 and earlier, PAN-OS 7.1.16 and earlier, PAN-OS 8.0.9 and earlier, and PAN-OS 8.1.1 and earlier may allow an attacker to inject arbitrary JavaScript or HTML.

CPENameOperatorVersion
pan-osgt6.0.0
pan-osle6.1.20
pan-osge7.1.0
pan-osle7.1.16
pan-osgt8.0.0
pan-osle8.0.9
pan-osge8.1.0
pan-osle8.1.1

Name	Operator	Version
pan-os	gt	6.0.0
pan-os	le	6.1.20
pan-os	ge	7.1.0
pan-os	le	7.1.16
pan-os	gt	8.0.0
pan-os	le	8.0.9
pan-os	ge	8.1.0
pan-os	le	8.1.1

References

www.securityfocus.com/bid/104658

www.securitytracker.com/id/1041241

security.paloaltonetworks.com/CVE-2018-9335