CVE-2021-3033

EUVD-2021-26385

10.02.2021, 18:15

An improper verification of cryptographic signature vulnerability exists in the Palo Alto Networks Prisma Cloud Compute console. This vulnerability enables an attacker to bypass signature validation during SAML authentication by logging in to the Prisma Cloud Compute console as any authorized user. This issue impacts: All versions of Prisma Cloud Compute 19.11, Prisma Cloud Compute 20.04, and Prisma Cloud Compute 20.09; Prisma Cloud Compute 20.12 before update 1. Prisma Cloud Compute SaaS version is not impacted by this vulnerability.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9.1 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
palo_alto	CNA	9.1 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 29%

Affected Products (NVD)

Vendor	Product	Version
paloaltonetworks	prisma_cloud	19.11
paloaltonetworks	prisma_cloud	19.11:update_1
paloaltonetworks	prisma_cloud	19.11:update_2
paloaltonetworks	prisma_cloud	20.04
paloaltonetworks	prisma_cloud	20.04:update_1
paloaltonetworks	prisma_cloud	20.04:update_2
paloaltonetworks	prisma_cloud	20.09
paloaltonetworks	prisma_cloud	20.09:update_1
paloaltonetworks	prisma_cloud	20.09:update_2
paloaltonetworks	prisma_cloud	20.12

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-347 - Improper Verification of Cryptographic Signature
The software does not verify, or incorrectly verifies, the cryptographic signature for data.

References

https://security.paloaltonetworks.com/CVE-2021-3033