CVE-2023-0004

Summary

A local file deletion vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to delete files from the local file system with elevated privileges.

These files can include logs and system components that impact the integrity and availability of PAN-OS software.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksPAN-OS8.1 < 8.1.24affected
Palo Alto NetworksPAN-OS9.0 < 9.0.17affected
Palo Alto NetworksPAN-OS9.1 < 9.1.15affected
Palo Alto NetworksPAN-OS10.0 < 10.0.11affected
Palo Alto NetworksPAN-OS10.1 < 10.1.6affected
Palo Alto NetworksPAN-OS10.2unaffected
Palo Alto NetworksPAN-OS11.0unaffected
Palo Alto NetworksPrisma AccessAllunaffected
Palo Alto NetworksCloud NGFWAllunaffected

Weaknesses

  • CWE-703: CWE-703 Improper Check or Handling of Exceptional Conditions

ADP Enrichment

CVE Program Container

Additional References

References