CVE-2023-6792

Name of the Vulnerable Software and Affected Versions PAN-OS (affected versions not specified)

Description The issue is related to an OS command injection vulnerability in the XML API of PAN-OS software. This vulnerability exists due to the lack of neutralization of special elements used in the OS command. An authenticated API user can exploit this vulnerability to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.