CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-1579

Known Exploited (CISA KEV)HIGH
8.1
CVSS Severity Score
EPSS Score83.3430%
EPSS Percentile91.35th
Published2019年7月19日
Last Modified2025年11月4日

Vulnerability Description

Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 and earlier with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauthenticated remote attacker to execute arbitrary code.

Affected Platforms (CPE)

💻
Paloaltonetworks

Pan Os

< 7.1.19
💻
Paloaltonetworks

Pan Os

>= 8.0.0 and < 8.0.12
💻
Paloaltonetworks

Pan Os

>= 8.1.0 and < 8.1.3

References & Advisories

🔗 http://www.securityfocus.com/bid/109310
🔗 https://devco.re/blog/2019/07/17/attacking-ssl-vpn-part-1-PreAuth-RCE-on-Palo-Alto-GlobalProtect-with-Uber-as-case-study/
🔗 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010
🔗 https://security.paloaltonetworks.com/CVE-2019-1579
🔗 http://www.securityfocus.com/bid/109310
🔗 https://devco.re/blog/2019/07/17/attacking-ssl-vpn-part-1-PreAuth-RCE-on-Palo-Alto-GlobalProtect-with-Uber-as-case-study/
🔗 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010
🔗 https://security.paloaltonetworks.com/CVE-2019-1579

相关漏洞威胁

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2012-659210.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote attackers to execute arbitrary commands via unspecifi...

CVE-2019-1744010.0

Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with second-generation Switch Manage...

CVE-2012-659310.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.4 allows remote attackers to execute arbitrary commands via unspecifi...