PT-2020-15228 · Palo Alto Networks · Pan-Os

Jin Chen

Published

2020-05-13

Updated

2020-05-14

CVE-2020-2006

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions PAN-OS versions 7.1 through 8.1.13 PAN-OS version 8.0

Description A stack-based buffer overflow vulnerability in the management server component of PAN-OS allows an authenticated user to potentially execute arbitrary code with root privileges.

Recommendations For PAN-OS versions 7.1 through 8.1.13, update to version 8.1.14 or later to resolve the issue. For PAN-OS version 8.0, update to version 8.1.14 or later to resolve the issue. As a temporary workaround, consider restricting access to the management server component until a patch is available.

Fix

Memory Corruption

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-121

Related Identifiers

CVE-2020-2006

Affected Products

Pan-Os

PT-2020-15228 · Palo Alto Networks · Pan-Os

CVE-2020-2006

Weakness Enumeration

Related Identifiers

Affected Products

References · 4