PT-2021-18725 · Palo Alto Networks · Palo Alto Networks Prisma Cloud Compute
Jakub Palaczynski
·
Published
2021-06-10
·
Updated
2021-06-25
·
CVE-2021-3039
CVSS v2.0
5.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Palo Alto Networks Prisma Cloud Compute versions prior to 21.04.412
Description
An information exposure through log file issue exists in the Palo Alto Networks Prisma Cloud Compute Console, where a secret used to authorize the role of the authenticated user is logged to a debug log file. Authenticated Operator role and Auditor role users with access to the debug log files can use this secret to gain Administrator role access for their active session in Prisma Cloud Compute.
Recommendations
For Prisma Cloud Compute versions prior to 21.04.412, update to version 21.04.412 or later to resolve the issue. As a temporary workaround, consider restricting access to the debug log files to prevent authenticated Operator role and Auditor role users from gaining Administrator role access.
Fix
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Palo Alto Networks Prisma Cloud Compute