CVE-2018-7636

Name of the Vulnerable Software and Affected Versions PAN-OS versions 8.0.0 through 8.0.10

Description A Cross-Site Scripting (XSS) issue exists in the PAN-OS URL filtering “continue page” due to improper validation of specific request parameters. This allows an attacker to inject arbitrary JavaScript or HTML via specially crafted URLs. Successful exploitation may enable an attacker to inject malicious code in URLs linking to the affected page hosted by the firewall.

Recommendations For PAN-OS versions 8.0.0 through 8.0.10, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the URL filtering “continue page” to minimize the risk of exploitation. Avoid using specially crafted URLs that could link to this page until the issue is resolved.