CVE-2019-1581

Summary

A remote code execution vulnerability in the PAN-OS SSH device management interface that can lead to unauthenticated remote users with network access to the SSH management interface gaining root access to PAN-OS. This issue affects PAN-OS 7.1 versions prior to 7.1.24-h1, 7.1.25; 8.0 versions prior to 8.0.19-h1, 8.0.20; 8.1 versions prior to 8.1.9-h4, 8.1.10; 9.0 versions prior to 9.0.3-h3, 9.0.4.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksPAN-OS7.1 < 7.1.24-h1, 7.1.25affected
Palo Alto NetworksPAN-OS8.0 < 8.0.19-h1, 8.0.20affected
Palo Alto NetworksPAN-OS8.1 < 8.1.9-h4, 8.1.10affected
Palo Alto NetworksPAN-OS9.0 < 9.0.3-h3, 9.0.4affected
Palo Alto NetworksPAN-OSall <= 7.0unknown

Weaknesses

  • CWE-78: CWE-78 OS Command Injection

Workarounds

This issue affects the SSH management interface of PAN-OS and is strongly mitigated by following best practices for securing the PAN-OS management interfaces. Our best practices guidelines reduce the exposure of device management interfaces to potential attacker.

ADP Enrichment

CVE Program Container

Additional References

References