PT-2023-15944 · Palo Alto Networks · Pan-Os

Colin Mcqueen

Published

2023-05-10

Updated

2023-05-17

CVE-2023-0007

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions PAN-OS (affected versions not specified)

Description A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances enables an authenticated read-write administrator to store a JavaScript payload in the web interface that will execute in the context of another administrator’s browser when viewed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-80CWE-79

Related Identifiers

CVE-2023-0007

Affected Products

Pan-Os

PT-2023-15944 · Palo Alto Networks · Pan-Os

CVE-2023-0007

Weakness Enumeration

Related Identifiers

Affected Products

References · 4