CVE-2021-3037

Summary

An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS software where the connection details for a scheduled configuration export are logged in system logs. Logged information includes the cleartext username, password, and IP address used to export the PAN-OS configuration to the destination server.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksPAN-OS8.1 < 8.1.19affected
Palo Alto NetworksPAN-OS9.0 < 9.0.13affected
Palo Alto NetworksPAN-OS9.1 < 9.1.4affected
Palo Alto NetworksPAN-OS10.0.0 < 10.0*unaffected

Weaknesses

  • CWE-534: CWE-534 Information Exposure Through Debug Log Files

ADP Enrichment

CVE Program Container

Additional References

References