CVE-2020-2016

Name of the Vulnerable Software and Affected Versions PAN-OS versions prior to 7.1.26 PAN-OS versions prior to 8.1.13 PAN-OS versions prior to 9.0.6 PAN-OS 8.0 versions

Description A race condition due to insecure creation of a file in a temporary directory allows for root privilege escalation from a limited linux user account. This issue enables an attacker who has escaped the restricted shell as a low privilege administrator to escalate privileges to become root user.

Recommendations For PAN-OS 7.1 versions, update to version 7.1.26 or later. For PAN-OS 8.1 versions, update to version 8.1.13 or later. For PAN-OS 9.0 versions, update to version 9.0.6 or later. For PAN-OS 8.0 versions, there is no information about a newer version that contains a fix for this vulnerability.