Description
A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions in the management plane and delete files on the firewall.
CVSS breakdown
CVSS 4.0
Attack Vector
Local
Attack Complexity
Low
Attack Requirements
None
Privileges Required
High
User Interaction
None
Confidentiality (Vulnerable System)
None
Integrity (Vulnerable System)
High
Availability (Vulnerable System)
High
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
AU
None
R
Unchanged
V
Changed
RE
M
U
Amber
Affected products
- Palo Alto Networks / Cloud NGFWAll – All
- Palo Alto Networks / Prisma AccessAll – All
- paloaltonetworks / pan-os11.2.2 – 11.2.2
- paloaltonetworks / pan-os11.2.1 – 11.2.1
- paloaltonetworks / pan-os11.2.0 – 11.2.0
- paloaltonetworks / pan-os11.2 – 11.2
- paloaltonetworks / pan-os11.1.4 – 11.1.4
- paloaltonetworks / pan-os11.1.4 – 11.1.4
- paloaltonetworks / pan-os11.1.4 – 11.1.4
- paloaltonetworks / pan-os11.1.4 – 11.1.4
- paloaltonetworks / pan-os11.1.4 – 11.1.4
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.3 – 11.1.3
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.2 – 11.1.2
- paloaltonetworks / pan-os11.1.1 – 11.1.1
- paloaltonetworks / pan-os11.1.1 – 11.1.1
- paloaltonetworks / pan-os11.1.0 – 11.1.0
- paloaltonetworks / pan-os11.1.0 – 11.1.0
- paloaltonetworks / pan-os11.1.0 – 11.1.0
- paloaltonetworks / pan-os11.1.0 – 11.1.0
- paloaltonetworks / pan-os11.1 – 11.1
- paloaltonetworks / pan-os11.0.5 – 11.0.5
- paloaltonetworks / pan-os11.0.5 – 11.0.5
- paloaltonetworks / pan-os11.0.4 – 11.0.4
- paloaltonetworks / pan-os11.0.4 – 11.0.4
- paloaltonetworks / pan-os11.0.4 – 11.0.4
- paloaltonetworks / pan-os11.0.4 – 11.0.4
- paloaltonetworks / pan-os11.0.4 – 11.0.4
- paloaltonetworks / pan-os11.0.4 – 11.0.4
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.3 – 11.0.3
- paloaltonetworks / pan-os11.0.2 – 11.0.2
- paloaltonetworks / pan-os11.0.2 – 11.0.2
- paloaltonetworks / pan-os11.0.2 – 11.0.2
- paloaltonetworks / pan-os11.0.2 – 11.0.2
- paloaltonetworks / pan-os11.0.2 – 11.0.2
- paloaltonetworks / pan-os11.0.1 – 11.0.1
- paloaltonetworks / pan-os11.0.1 – 11.0.1
- paloaltonetworks / pan-os11.0.1 – 11.0.1
- paloaltonetworks / pan-os11.0.1 – 11.0.1
- paloaltonetworks / pan-os11.0.1 – 11.0.1
- paloaltonetworks / pan-os11.0.0 – 11.0.0
- paloaltonetworks / pan-os11.0.0 – 11.0.0
- paloaltonetworks / pan-os11.0.0 – 11.0.0
- paloaltonetworks / pan-os11.0.0 – 11.0.0
- paloaltonetworks / pan-os11.0 – 11.0
- paloaltonetworks / pan-os10.2.11 – 10.2.11
- paloaltonetworks / pan-os10.2.11 – 10.2.11
- paloaltonetworks / pan-os10.2.11 – 10.2.11
- paloaltonetworks / pan-os10.2.11 – 10.2.11
- paloaltonetworks / pan-os10.2.11 – 10.2.11
- paloaltonetworks / pan-os10.2.10 – 10.2.10
- paloaltonetworks / pan-os10.2.10 – 10.2.10
- paloaltonetworks / pan-os10.2.10 – 10.2.10
- paloaltonetworks / pan-os10.2.10 – 10.2.10
- paloaltonetworks / pan-os10.2.10 – 10.2.10
- paloaltonetworks / pan-os10.2.10 – 10.2.10
- paloaltonetworks / pan-os10.2.10 – 10.2.10
- paloaltonetworks / pan-os10.2.10 – 10.2.10
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.9 – 10.2.9
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.8 – 10.2.8
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.7 – 10.2.7
- paloaltonetworks / pan-os10.2.6 – 10.2.6
- paloaltonetworks / pan-os10.2.6 – 10.2.6
- paloaltonetworks / pan-os10.2.6 – 10.2.6
- paloaltonetworks / pan-os10.2.6 – 10.2.6
- paloaltonetworks / pan-os10.2.5 – 10.2.5
- paloaltonetworks / pan-os10.2.5 – 10.2.5
- paloaltonetworks / pan-os10.2.5 – 10.2.5
- paloaltonetworks / pan-os10.2.5 – 10.2.5
- paloaltonetworks / pan-os10.2.5 – 10.2.5
- paloaltonetworks / pan-os10.2.5 – 10.2.5
- paloaltonetworks / pan-os10.2.5 – 10.2.5
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.4 – 10.2.4
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os10.2.2 – 10.2.2
- paloaltonetworks / pan-os10.2.2 – 10.2.2
- paloaltonetworks / pan-os10.2.2 – 10.2.2
- paloaltonetworks / pan-os10.2.2 – 10.2.2
- paloaltonetworks / pan-os10.2.2 – 10.2.2
- paloaltonetworks / pan-os10.2.2 – 10.2.2
- paloaltonetworks / pan-os10.2.1 – 10.2.1
- paloaltonetworks / pan-os10.2.1 – 10.2.1
- paloaltonetworks / pan-os10.2.1 – 10.2.1
- paloaltonetworks / pan-os10.2.0 – 10.2.0
- paloaltonetworks / pan-os10.2.0 – 10.2.0
- paloaltonetworks / pan-os10.2.0 – 10.2.0
- paloaltonetworks / pan-os10.2.0 – 10.2.0
- paloaltonetworks / pan-os10.2 – 10.2
- paloaltonetworks / pan-os10.2.3 – 10.2.3
- paloaltonetworks / pan-os11.2.3 – 11.2.3