6 matches found
SUSE: Security Advisory (SUSE-SU-2021:0663-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : open-iscsi (SUSE-SU-2021:0663-1)
This update for open-iscsi fixes the following issues : Fixes for CVE-2019-17437, CVE-2020-17438, CVE-2020-13987 and CVE-2020-13988 bsc1179908 : check for TCP urgent pointer past end of frame check for u8 overflow when processing TCP options check for header length underflow during checksum...
SUSE-SU-2021:0663-1 Security update for open-iscsi
This update for open-iscsi fixes the following issues: Fixes for CVE-2019-17437, CVE-2020-17438, CVE-2020-13987 and CVE-2020-13988 bsc1179908: - check for TCP urgent pointer past end of frame - check for u8 overflow when processing TCP options - check for header length underflow during checksum...
CVE-2019-17437
CVE-2019-17437 describes an improper authentication check in Palo Alto Networks PAN-OS that may allow an authenticated low-privilege non-superuser custom role user to elevate privileges to superuser. Affected are PAN-OS versions: 7.1 prior to 7.1.25; 8.0 prior to 8.0.20; 8.1 prior to 8.1.11; and ...
CVE-2019-17437 PAN-OS: Custom-role users may escalate privileges
An improper authentication check in Palo Alto Networks PAN-OS may allow an authenticated low privileged non-superuser custom role user to elevate privileges and become superuser. This issue affects PAN-OS 7.1 versions prior to 7.1.25; 8.0 versions prior to 8.0.20; 8.1 versions prior to 8.1.11; 9....
Palo Alto Networks PAN-OS CVE-2019-17437 Privilege Escalation Vulnerability
Description Palo Alto Networks PAN-OS is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to obtain elevated privileges. PAN-OS 7.1 versions prior to 7.1.25, 8.0 versions prior to 8.0.20, 8.1 versions prior to 8.1.11, 9.0 versions prior to 9.0.5 are vulnerable...