Vulnerabilities > CVE-2020-1999 - Improper Check for Unusual or Exceptional Conditions vulnerability in Paloaltonetworks Pan-Os

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
paloaltonetworks
CWE-754
NVD
Published: 2020-11-12
Updated: 2020-11-16

Summary

A vulnerability exists in the Palo Alto Network PAN-OS signature-based threat detection engine that allows an attacker to communicate with devices in the network in a way that is not analyzed for threats by sending data through specifically crafted TCP packets. This technique evades signature-based threat detection. This issue impacts: PAN-OS 8.1 versions earlier than 8.1.17; PAN-OS 9.0 versions earlier than 9.0.11; PAN-OS 9.1 versions earlier than 9.1.5; All versions of PAN-OS 7.1 and PAN-OS 8.0.

Vulnerable Configurations

Part Description Count
OS
Paloaltonetworks
97

Common Weakness Enumeration (CWE)

References