CVE-2020-2001

Name of the Vulnerable Software and Affected Versions Palo Alto Networks PAN-OS Panorama versions 7.1 Palo Alto Networks PAN-OS Panorama versions 8.0 through 8.0.20 Palo Alto Networks PAN-OS Panorama versions 8.1 through 8.1.11 Palo Alto Networks PAN-OS Panorama versions 9.0 through 9.0.5

Description An external control of path and data issue in the Palo Alto Networks PAN-OS Panorama XSLT processing logic allows an unauthenticated user with network access to the PAN-OS management interface to write attacker-supplied files on the system and elevate privileges.

Recommendations For versions 7.1, update to a version later than 7.1 to resolve the issue. For versions 8.0 through 8.0.20, update to version 8.0.21 or later to resolve the issue. For versions 8.1 through 8.1.11, update to version 8.1.12 or later to resolve the issue. For versions 9.0 through 9.0.5, update to version 9.0.6 or later to resolve the issue.