Security Advisory

CVE-2020-2029

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-10 17:28:40

Last updated 2024-09-16 16:52:57

Assigner palo_alto

State PUBLISHED

Description

An OS Command Injection vulnerability in the PAN-OS web management interface allows authenticated administrators to execute arbitrary OS commands with root privileges by sending a malicious request to generate new certificates for use in the PAN-OS configuration. This issue affects: All versions of PAN-OS 8.0; PAN-OS 7.1 versions earlier than PAN-OS 7.1.26; PAN-OS 8.1 versions earlier than PAN-OS 8.1.13.

← Browse all CVEs View on cve.org ↗