Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:MISC:PALO-ALTO-AUTH-BYPASS |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Palo Alto Networks Management Interface Authentication Bypass |
Release Date |
2018/10/31 |
Update Number |
3114 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Palo Alto Networks Management Interface Authentication Bypass
This signature detects attempts to exploit a known vulnerability against Palo Alto Networks. Attackers could bypass security restrictions to gain unauthorized access to user accounts
Extended Description
Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.
Affected Products
- Paloaltonetworks pan-os -
- Paloaltonetworks pan-os 1.3
- Paloaltonetworks pan-os 2.0
- Paloaltonetworks pan-os 2.1
- Paloaltonetworks pan-os 3.0
- Paloaltonetworks pan-os 3.1
- Paloaltonetworks pan-os 3.1.10
- Paloaltonetworks pan-os 3.1.11
- Paloaltonetworks pan-os 3.1.12
- Paloaltonetworks pan-os 3.1.9
- Paloaltonetworks pan-os 4.0.0
- Paloaltonetworks pan-os 4.0.1
- Paloaltonetworks pan-os 4.0.10
- Paloaltonetworks pan-os 4.0.11
- Paloaltonetworks pan-os 4.0.12
- Paloaltonetworks pan-os 4.0.13
- Paloaltonetworks pan-os 4.0.2
- Paloaltonetworks pan-os 4.0.3
- Paloaltonetworks pan-os 4.0.4
- Paloaltonetworks pan-os 4.0.5
- Paloaltonetworks pan-os 4.0.6
- Paloaltonetworks pan-os 4.0.7
- Paloaltonetworks pan-os 4.0.8
- Paloaltonetworks pan-os 4.0.9
- Paloaltonetworks pan-os 4.1.0
- Paloaltonetworks pan-os 4.1.1
- Paloaltonetworks pan-os 4.1.10
- Paloaltonetworks pan-os 4.1.11
- Paloaltonetworks pan-os 4.1.12
- Paloaltonetworks pan-os 4.1.13
- Paloaltonetworks pan-os 4.1.2
- Paloaltonetworks pan-os 4.1.3
- Paloaltonetworks pan-os 4.1.4
- Paloaltonetworks pan-os 4.1.5
- Paloaltonetworks pan-os 4.1.6
- Paloaltonetworks pan-os 4.1.7
- Paloaltonetworks pan-os 4.1.8
- Paloaltonetworks pan-os 4.1.8-h3
- Paloaltonetworks pan-os 4.1.9
- Paloaltonetworks pan-os 5.0.0
- Paloaltonetworks pan-os 5.0.0-h1
- Paloaltonetworks pan-os 5.0.10
- Paloaltonetworks pan-os 5.0.11
- Paloaltonetworks pan-os 5.0.12
- Paloaltonetworks pan-os 5.0.13
- Paloaltonetworks pan-os 5.0.14
- Paloaltonetworks pan-os 5.0.15
- Paloaltonetworks pan-os 5.0.16
- Paloaltonetworks pan-os 5.0.17
- Paloaltonetworks pan-os 5.0.18
- Paloaltonetworks pan-os 5.0.19
- Paloaltonetworks pan-os 5.0.2
- Paloaltonetworks pan-os 5.0.20
- Paloaltonetworks pan-os 5.0.3
- Paloaltonetworks pan-os 5.0.4
- Paloaltonetworks pan-os 5.0.5
- Paloaltonetworks pan-os 5.0.6
- Paloaltonetworks pan-os 5.0.7
- Paloaltonetworks pan-os 5.0.8
- Paloaltonetworks pan-os 5.0.9
- Paloaltonetworks pan-os 5.1
- Paloaltonetworks pan-os 5.1.1
- Paloaltonetworks pan-os 5.1.10
- Paloaltonetworks pan-os 5.1.11
- Paloaltonetworks pan-os 5.1.12
- Paloaltonetworks pan-os 5.1.13
- Paloaltonetworks pan-os 5.1.2
- Paloaltonetworks pan-os 5.1.3
- Paloaltonetworks pan-os 5.1.4
- Paloaltonetworks pan-os 5.1.5
- Paloaltonetworks pan-os 5.1.6
- Paloaltonetworks pan-os 5.1.7
- Paloaltonetworks pan-os 5.1.8
- Paloaltonetworks pan-os 5.1.9
- Paloaltonetworks pan-os 6.0
- Paloaltonetworks pan-os 6.0.0
- Paloaltonetworks pan-os 6.0.1
- Paloaltonetworks pan-os 6.0.10
- Paloaltonetworks pan-os 6.0.11
- Paloaltonetworks pan-os 6.0.12
- Paloaltonetworks pan-os 6.0.13
- Paloaltonetworks pan-os 6.0.14
- Paloaltonetworks pan-os 6.0.15
- Paloaltonetworks pan-os 6.0.2
- Paloaltonetworks pan-os 6.0.3
- Paloaltonetworks pan-os 6.0.4
- Paloaltonetworks pan-os 6.0.5
- Paloaltonetworks pan-os 6.0.6
- Paloaltonetworks pan-os 6.0.7
- Paloaltonetworks pan-os 6.0.8
- Paloaltonetworks pan-os 6.0.9
- Paloaltonetworks pan-os 6.1.0
- Paloaltonetworks pan-os 6.1.1
- Paloaltonetworks pan-os 6.1.10
- Paloaltonetworks pan-os 6.1.11
- Paloaltonetworks pan-os 6.1.12
- Paloaltonetworks pan-os 6.1.13
- Paloaltonetworks pan-os 6.1.14
- Paloaltonetworks pan-os 6.1.15
- Paloaltonetworks pan-os 6.1.16
- Paloaltonetworks pan-os 6.1.17
- Paloaltonetworks pan-os 6.1.18
- Paloaltonetworks pan-os 6.1.2
- Paloaltonetworks pan-os 6.1.3
- Paloaltonetworks pan-os 6.1.4
- Paloaltonetworks pan-os 6.1.5
- Paloaltonetworks pan-os 6.1.6
- Paloaltonetworks pan-os 6.1.7
- Paloaltonetworks pan-os 6.1.8
- Paloaltonetworks pan-os 6.1.9
- Paloaltonetworks pan-os 7.0.0
- Paloaltonetworks pan-os 7.0.1
- Paloaltonetworks pan-os 7.0.10
- Paloaltonetworks pan-os 7.0.11
- Paloaltonetworks pan-os 7.0.12
- Paloaltonetworks pan-os 7.0.13
- Paloaltonetworks pan-os 7.0.14
- Paloaltonetworks pan-os 7.0.15
- Paloaltonetworks pan-os 7.0.16
- Paloaltonetworks pan-os 7.0.17
- Paloaltonetworks pan-os 7.0.18
- Paloaltonetworks pan-os 7.0.2
- Paloaltonetworks pan-os 7.0.3
- Paloaltonetworks pan-os 7.0.4
- Paloaltonetworks pan-os 7.0.5
- Paloaltonetworks pan-os 7.0.5-h2
- Paloaltonetworks pan-os 7.0.6
- Paloaltonetworks pan-os 7.0.7
- Paloaltonetworks pan-os 7.0.8
- Paloaltonetworks pan-os 7.0.9
- Paloaltonetworks pan-os 7.1.0
- Paloaltonetworks pan-os 7.1.1
- Paloaltonetworks pan-os 7.1.10
- Paloaltonetworks pan-os 7.1.11
- Paloaltonetworks pan-os 7.1.12
- Paloaltonetworks pan-os 7.1.13
- Paloaltonetworks pan-os 7.1.2
- Paloaltonetworks pan-os 7.1.3
- Paloaltonetworks pan-os 7.1.4
- Paloaltonetworks pan-os 7.1.4-h2
- Paloaltonetworks pan-os 7.1.5
- Paloaltonetworks pan-os 7.1.6
- Paloaltonetworks pan-os 7.1.7
- Paloaltonetworks pan-os 7.1.8
- Paloaltonetworks pan-os 7.1.9
- Paloaltonetworks pan-os 8.0.0
- Paloaltonetworks pan-os 8.0.1
- Paloaltonetworks pan-os 8.0.2
- Paloaltonetworks pan-os 8.0.3
- Paloaltonetworks pan-os 8.0.4
- Paloaltonetworks pan-os 8.0.5
References
- BugTraq: 102079
- CVE: CVE-2017-15944