CyberSec.Space Logo
CVEブラウザに戻る

CVE-2017-15944

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score38.6480%
EPSS Percentile91.57th
Published2017年12月11日
Last Modified2026年4月22日

Vulnerability Description

Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.

Affected Platforms (CPE)

💻
Paloaltonetworks

Pan Os

< 6.1.19
💻
Paloaltonetworks

Pan Os

>= 7.0.0 and < 7.0.19
💻
Paloaltonetworks

Pan Os

>= 7.1.0 and < 7.1.14
💻
Paloaltonetworks

Pan Os

>= 8.0.0 and < 8.0.6

References & Advisories

🔗 http://www.securityfocus.com/bid/102079
🔗 http://www.securitytracker.com/id/1040007
🔗 https://security.paloaltonetworks.com/CVE-2017-15944
🔗 https://www.exploit-db.com/exploits/43342/
🔗 https://www.exploit-db.com/exploits/44597/
🔗 http://www.securityfocus.com/bid/102079
🔗 http://www.securitytracker.com/id/1040007
🔗 https://security.paloaltonetworks.com/CVE-2017-15944

関連する脆弱性情報

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2012-659210.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote attackers to execute arbitrary commands via unspecifi...

CVE-2019-1744010.0

Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with second-generation Switch Manage...

CVE-2012-659310.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.4 allows remote attackers to execute arbitrary commands via unspecifi...