CVE-2016-1712

Name of the Vulnerable Software and Affected Versions Palo Alto Networks PAN-OS versions 5.0.18 and earlier Palo Alto Networks PAN-OS versions 5.1.11 and earlier Palo Alto Networks PAN-OS versions 6.0.13 and earlier Palo Alto Networks PAN-OS versions 6.1.11 and earlier Palo Alto Networks PAN-OS versions 7.0.7 and earlier

Description The issue is related to improper sanitization of the root reboot local invocation, which can potentially allow local users to gain privileges. Exploitation of this privilege escalation is restricted to local users, and potential attackers would have to first obtain a shell on the device before they could attempt to escalate privileges through this issue.

Recommendations For versions 5.0.18 and earlier, update to version 5.0.19 or later. For versions 5.1.11 and earlier, update to version 5.1.12 or later. For versions 6.0.13 and earlier, update to version 6.0.14 or later. For versions 6.1.11 and earlier, update to version 6.1.12 or later. For versions 7.0.7 and earlier, update to version 7.0.8 or later.