Lucene search
+L

4 matches found

NVD
NVD
added 2021/09/08 5:15 p.m.24 views

CVE-2021-3054

A time-of-check to time-of-use TOCTOU race condition vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permission to upload plugins to execute arbitrary code with root user privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-...

8.5CVSS0.00918EPSS
Exploits0References1
CVE
CVE
added 2021/09/08 5:10 p.m.76 views

CVE-2021-3054

CVE-2021-3054 is a TOCTOU race condition in the Palo Alto Networks PAN-OS web interface. An authenticated administrator with permission to upload plugins can trigger arbitrary code execution with root privileges. Affected PAN-OS versions include 8.1.x before 8.1.20, 9.0.x before 9.0.14, 9.1.x bef...

8.5CVSS6.9AI score0.00918EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/09/08 5:10 p.m.27 views

CVE-2021-3054 PAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability

A time-of-check to time-of-use TOCTOU race condition vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permission to upload plugins to execute arbitrary code with root user privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-...

7.2CVSS7.3AI score0.00918EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2021/09/08 4:0 p.m.33 views

PAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability

A time-of-check to time-of-use TOCTOU race condition vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permission to upload plugins to execute arbitrary code with root user privileges. Work around: Enable signatures for Unique Threat ID 91572...

7.2CVSS2.1AI score0.00918EPSS
Exploits0References1
Rows per page
Query Builder