4 matches found
CVE-2021-3058
An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permissions to use XML API the ability to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20-h1;...
CVE-2021-3058
An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permissions to use XML API the ability to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20-h1;...
CVE-2021-3058
CVE-2021-3058 affects Palo Alto Networks PAN-OS web interface via an OS command injection in the XML API. A authenticated administrator with XML API permissions can execute arbitrary OS commands to escalate privileges. Affected versions are PAN-OS: 8.1.x before 8.1.20-h1; 9.0.x before 9.0.14-h3; ...
PAN-OS: OS Command Injection Vulnerability in Web Interface XML API
An OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permissions to use XML API the ability to execute arbitrary OS commands to escalate privileges. Work around: Enable signatures for Unique Threat ID 91715 on traffic...