7 matches found
Exploit for OS Command Injection in Paloaltonetworks Prisma_Access
CVE-2021-3060 POC/ Exploit Description: An OS command inj...
Palo Alto Networks Multiple Products Command Injection (CVE-2021-3060)
A command injection vulnerability exists in multiple Palo Alto Networks products. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Palo Alto Networks PAN-OS 8.1.x < 8.1.20-h1 / 9.0.x < 9.0.14-h3 / 9.1.x < 9.1.11-h2 / 10.0.x < 10.0.8 / 10.1.x < 10.1.3 Vulnerability
The version of Palo Alto Networks PAN-OS running on the remote host is 8.1.x prior to 8.1.20-h1 or 9.0.x prior to 9.0.14-h3 or 9.1.x prior to 9.1.11-h2 or 10.0.x prior to 10.0.8 or 10.1.x prior to 10.1.3. It is, therefore, affected by a vulnerability. - An OS command injection vulnerability in th...
CVE-2021-3060
creationtimestamp| type| source ---|---|--- 2021-11-10 20:36:52+00:00| seen| https://t.me/cibsecurity/32199...
CVE-2021-3060
An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...
CVE-2021-3060 PAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP)
An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...
CVE-2021-3060
CVE-2021-3060 describes an OS command injection in Palo Alto Networks PAN-OS SCEP (Simple Certificate Enrollment Protocol). The vulnerability allows an unauthenticated, network-based attacker with knowledge of the firewall configuration and access to GlobalProtect interfaces to execute arbitrary ...