Lucene search
K

8 matches found

NVD
NVD
added 2021/11/10 5:15 p.m.16 views

CVE-2021-3059

An OS command injection vulnerability in the Palo Alto Networks PAN-OS management interface exists when performing dynamic updates. This vulnerability enables a man-in-the-middle attacker to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than...

8.1CVSS0.0154EPSS
Exploits0References1
NVD
NVD
added 2021/11/10 5:15 p.m.27 views

CVE-2021-3060

An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...

9.3CVSS0.33875EPSS
Exploits1References3
NVD
NVD
added 2021/11/10 5:15 p.m.20 views

CVE-2021-3056

A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN enables an authenticated attacker to execute arbitrary code with root user privileges during SAML authentication. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20; PAN-OS 9.0 versions...

8.8CVSS0.01488EPSS
Exploits0References1
Prion
Prion
added 2021/11/10 5:15 p.m.20 views

Memory corruption

A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN enables an authenticated attacker to execute arbitrary code with root user privileges during SAML authentication. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20; PAN-OS 9.0 versions...

8.5CVSS8.9AI score0.01488EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/11/10 5:15 p.m.23 views

Command injection

An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...

9.3CVSS8.5AI score0.33875EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2021/11/10 5:10 p.m.23 views

CVE-2021-3061 PAN-OS: OS Command Injection Vulnerability in the Command Line Interface (CLI)

An OS command injection vulnerability in the Palo Alto Networks PAN-OS command line interface CLI enables an authenticated administrator with access to the CLI to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20-h1; PAN-OS 9....

6.4CVSS7.6AI score0.00859EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/11/10 5:10 p.m.31 views

CVE-2021-3060 PAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP)

An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...

8.1CVSS8.7AI score0.33875EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/11/10 5:10 p.m.21 views

CVE-2021-3059 PAN-OS: OS Command Injection Vulnerability When Performing Dynamic Updates

An OS command injection vulnerability in the Palo Alto Networks PAN-OS management interface exists when performing dynamic updates. This vulnerability enables a man-in-the-middle attacker to execute arbitrary OS commands to escalate privileges. This issue impacts: PAN-OS 8.1 versions earlier than...

8.1CVSS8.7AI score0.0154EPSS
Exploits0References1
Rows per page
Query Builder