Description
An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, and device API keys. This vulnerability also enables attackers to create and read arbitrary files on the Expedition system.
CVSS breakdown
CVSS 4.0
Attack Vector
Network
Attack Complexity
Low
Attack Requirements
None
Privileges Required
None
User Interaction
None
Confidentiality (Vulnerable System)
High
Integrity (Vulnerable System)
Low
Availability (Vulnerable System)
None
Confidentiality (Subsequent System)
High
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
AU
None
R
Unchanged
V
Changed
RE
High
U
Amber
Affected products
- Palo Alto Networks / Cloud NGFWAll – All
- Palo Alto Networks / Expedition1 – 1.2.100
- Palo Alto Networks / PanoramaAll – All
- Palo Alto Networks / pan-osAll – All
- Palo Alto Networks / Prisma AccessAll – All