HTTP: Palo Alto Networks Management Interface Authentication Bypass

This signature detects attempts to exploit a known vulnerability against Palo Alto Networks. Attackers could bypass security restrictions to gain unauthorized access to user accounts

Extended Description

Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.

Affected Products

Paloaltonetworks pan-os

References

BugTraq: 102079

CVE: CVE-2017-15944

Short Name
HTTP:MISC:PALO-ALTO-AUTH-BYPASS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Alto Authentication Bypass CVE-2017-15944 Interface Management Networks Palo bid:102079
Release Date
10/31/2018
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3337
False Positive
Unknown
Vendors

Paloaltonetworks

CVSS Score

7.5

Found a potential security threat?