Lucene search
Symantec Security ResponseSMNTC-110979HistoryOct 01, 2019 - 12:00 a.m.
Palo Alto Networks Zingbox Inspector CVE-2019-15022 ARP Spoofing Vulnerability
2019-10-0100:00:00
Symantec Security Response
www.symantec.com
14
0.001 Low
EPSS
Percentile
35.9%
Description
Palo Alto Networks Zingbox Inspector is prone to a security vulnerability that may allow attackers to conduct ARP spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Zingbox Inspector 1.294 and earlier are vulnerable.
Technologies Affected
- Paloaltonetworks Zingbox Inspector 1.280
- Paloaltonetworks Zingbox Inspector 1.281
- Paloaltonetworks Zingbox Inspector 1.286
- Paloaltonetworks Zingbox Inspector 1.287
- Paloaltonetworks Zingbox Inspector 1.288
- Paloaltonetworks Zingbox Inspector 1.289
- Paloaltonetworks Zingbox Inspector 1.293
- Paloaltonetworks Zingbox Inspector 1.294
Recommendations
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Allow only trusted individuals to have user accounts and local access to the resources.
Updates are available. Please see the references or vendor advisory for more information.
References
Related
prion
prion
Security feature bypass
2019-10-09 21:15:00
paloalto
paloalto
ARP Spoofing in Zingbox Inspector
2019-10-01 07:00:00
cve
cve
CVE-2019-15022
2019-10-09 21:15:13
cvelist
cvelist
CVE-2019-15022
2019-10-09 20:20:28
nvd
nvd
CVE-2019-15022
2019-10-09 21:15:13