CyberSec.Space Logo
Back to CVE Browser

CVE-2019-1579

Known Exploited (CISA KEV)HIGH
8.1
CVSS Severity Score
EPSS Score83.3430%
EPSS Percentile91.35th
PublishedJul 19, 2019
Last ModifiedNov 4, 2025

Vulnerability Description

Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 and earlier with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauthenticated remote attacker to execute arbitrary code.

Affected Platforms (CPE)

πŸ’»
Paloaltonetworks

Pan Os

< 7.1.19
πŸ’»
Paloaltonetworks

Pan Os

>= 8.0.0 and < 8.0.12
πŸ’»
Paloaltonetworks

Pan Os

>= 8.1.0 and < 8.1.3

References & Advisories

πŸ”— http://www.securityfocus.com/bid/109310
πŸ”— https://devco.re/blog/2019/07/17/attacking-ssl-vpn-part-1-PreAuth-RCE-on-Palo-Alto-GlobalProtect-with-Uber-as-case-study/
πŸ”— https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010
πŸ”— https://security.paloaltonetworks.com/CVE-2019-1579
πŸ”— http://www.securityfocus.com/bid/109310
πŸ”— https://devco.re/blog/2019/07/17/attacking-ssl-vpn-part-1-PreAuth-RCE-on-Palo-Alto-GlobalProtect-with-Uber-as-case-study/
πŸ”— https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010
πŸ”— https://security.paloaltonetworks.com/CVE-2019-1579

Related Vulnerabilities

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2012-659210.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote attackers to execute arbitrary commands via unspecifi...

CVE-2019-1744010.0

Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with second-generation Switch Manage...

CVE-2012-659310.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.4 allows remote attackers to execute arbitrary commands via unspecifi...