CVE-2020-1982

Name of the Vulnerable Software and Affected Versions PAN-OS versions 8.0 PAN-OS versions 8.1 through 8.1.13 PAN-OS versions 9.0 through 9.0.8 PAN-OS versions 9.1 through 9.1.2

Description The issue arises from certain communication between PAN-OS and cloud-delivered services inadvertently using TLS 1.0, a cryptographically weak protocol. The affected cloud services include Cortex Data Lake, the Customer Support Portal, and the Prisma Access infrastructure. Although TLS 1.0 weaknesses are known, the conditions required for their exploitation do not exist in this context, and it is believed that no communication is impacted by known attacks against TLS 1.0.

Recommendations For PAN-OS version 8.0, update to a version later than 8.0 to resolve the issue. For PAN-OS versions 8.1 through 8.1.13, update to PAN-OS 8.1.14 or later. For PAN-OS versions 9.0 through 9.0.8, update to PAN-OS 9.0.9 or later. For PAN-OS versions 9.1 through 9.1.2, update to PAN-OS 9.1.3 or later.