The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Palo Alto PAN-OS: information disclosure via Proxy Passwords

Synthesis of the vulnerability 

An attacker can bypass access restrictions to data via Proxy Passwords of Palo Alto PAN-OS, in order to obtain sensitive information.
Impacted systems: Palo Alto Firewall PA***, PAN-OS.
Severity of this alert: 1/4.
Creation date: 12/11/2020.
Références of this alert: CERTFR-2020-AVI-730, CVE-2020-2048, PAN-100415, PAN-100734, PAN-100855, PAN-102682, PAN-102688, PAN-108992, PAN-117955, PAN-118226, PAN-118957, PAN-119810, PAN-120397, PAN-121058, PAN-123391, PAN-123661, PAN-124039, PAN-125122, PAN-126362, PAN-127118, PAN-128248, PAN-130361, PAN-133527, PAN-82052, VIGILANCE-VUL-33893.

Description of the vulnerability 

An attacker can bypass access restrictions to data via Proxy Passwords of Palo Alto PAN-OS, in order to obtain sensitive information.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This cybersecurity alert impacts software or systems such as Palo Alto Firewall PA***, PAN-OS.

Our Vigil@nce team determined that the severity of this weakness is low.

The trust level is of type confirmed by the editor, with an origin of user account.

An attacker with a expert ability can exploit this security weakness.

Solutions for this threat 

PAN-OS: version 9.1.2.
The version 9.1.2 is fixed:
  https://www.paloaltonetworks.com/

Palo Alto PAN-OS: version 9.0.11.
The version 9.0.11 is fixed:
  https://support.paloaltonetworks.com/support

Palo Alto PAN-OS: version 8.1.17.
The version 8.1.17 is fixed:
  https://support.paloaltonetworks.com/support
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides an application vulnerability watch. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.