CVE-2021-3037
20.04.2021, 04:15
An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS software where the connection details for a scheduled configuration export are logged in system logs. Logged information includes the cleartext username, password, and IP address used to export the PAN-OS configuration to the destination server.Enginsight
| Vendor | Product | Version |
|---|---|---|
| paloaltonetworks | pan-os | 8.1.0 ≤ 𝑥 < 8.1.19 |
| paloaltonetworks | pan-os | 9.0.0 ≤ 𝑥 < 9.0.13 |
| paloaltonetworks | pan-os | 9.1.0 ≤ 𝑥 < 9.1.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-534 - DEPRECATED: Information Exposure Through Debug Log FilesThis entry has been deprecated because its abstraction was too low-level. See CWE-532.
- CWE-532 - Insertion of Sensitive Information into Log FileInformation written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.