Palo Alto Networks PAN-OS 11.1.x < 11.1.10 / 11.2.x < 11.2.8 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 11.1.x prior to 11.1.10 or 11.2.x prior to 11.2.8. It is, therefore, affected by a vulnerability. A problem with the implementation of the MACsec protocol in Palo Alto Networks PAN-OS results in the cleartext exposure of the...

CVE-2025-2182 PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK)

A problem with the implementation of the MACsec protocol in Palo Alto Networks PAN-OS® results in the cleartext exposure of the connectivity association key CAK. This issue is only applicable to PA-7500 Series devices which are in an NGFW cluster. A user who possesses this key can read messages...

PT-2025-33022 · Palo Alto Networks · Pa-7500 Series +1

Name of the Vulnerable Software and Affected Versions: Palo Alto Networks PAN-OS® affected versions not specified PA-7500 Series devices in an NGFW cluster affected versions not specified Description: A flaw in the implementation of the MACsec protocol can lead to the cleartext exposure of the...

CVE-2023-44981 Apache ZooKeeper: Authorization bypass in SASL Quorum Peer Authentication

Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is enabled in ZooKeeper quorum.auth.enableSasl=true, the authorization is done by verifying that the instance part in SASL authentication ID is listed in zoo.cfg server list. The...