CyberSec.Space Logo
Back to CVE Browser

CVE-2017-15944

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score38.6480%
EPSS Percentile91.57th
PublishedDec 11, 2017
Last ModifiedApr 22, 2026

Vulnerability Description

Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.

Affected Platforms (CPE)

πŸ’»
Paloaltonetworks

Pan Os

< 6.1.19
πŸ’»
Paloaltonetworks

Pan Os

>= 7.0.0 and < 7.0.19
πŸ’»
Paloaltonetworks

Pan Os

>= 7.1.0 and < 7.1.14
πŸ’»
Paloaltonetworks

Pan Os

>= 8.0.0 and < 8.0.6

References & Advisories

πŸ”— http://www.securityfocus.com/bid/102079
πŸ”— http://www.securitytracker.com/id/1040007
πŸ”— https://security.paloaltonetworks.com/CVE-2017-15944
πŸ”— https://www.exploit-db.com/exploits/43342/
πŸ”— https://www.exploit-db.com/exploits/44597/
πŸ”— http://www.securityfocus.com/bid/102079
πŸ”— http://www.securitytracker.com/id/1040007
πŸ”— https://security.paloaltonetworks.com/CVE-2017-15944

Related Vulnerabilities

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2012-659210.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote attackers to execute arbitrary commands via unspecifi...

CVE-2019-1744010.0

Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with second-generation Switch Manage...

CVE-2012-659310.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.4 allows remote attackers to execute arbitrary commands via unspecifi...