CVE-2019-17437
05.12.2019, 15:15
An improper authentication check in Palo Alto Networks PAN-OS may allow an authenticated low privileged non-superuser custom role user to elevate privileges and become superuser. This issue affects PAN-OS 7.1 versions prior to 7.1.25; 8.0 versions prior to 8.0.20; 8.1 versions prior to 8.1.11; 9.0 versions prior to 9.0.5. PAN-OS version 7.0 and prior EOL versions have not been evaluated for this issue.Enginsight
| Vendor | Product | Version |
|---|---|---|
| paloaltonetworks | pan-os | 7.1.0 ≤ 𝑥 < 7.1.25 |
| paloaltonetworks | pan-os | 8.0.0 ≤ 𝑥 < 8.0.20 |
| paloaltonetworks | pan-os | 8.1.0 ≤ 𝑥 < 8.1.11 |
| paloaltonetworks | pan-os | 9.0.0 ≤ 𝑥 < 9.0.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-280 - Improper Handling of Insufficient Permissions or PrivilegesThe application does not handle or incorrectly handles when it has insufficient privileges to access resources or functionality as specified by their permissions. This may cause it to follow unexpected code paths that may leave the application in an invalid state.
- CWE-287 - Improper AuthenticationWhen an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.