9.1.2

CVSS 4.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

paloaltonetworks

CWE-191

NVD

Published: 2020-07-08

Updated: 2020-07-14

Summary

An integer underflow vulnerability in the dnsproxyd component of the PAN-OS management interface allows authenticated administrators to issue a command from the command line interface that causes the component to stop responding. Repeated attempts to send this request result in denial of service to all PAN-OS services by restarting the device and putting it into maintenance mode. This issue impacts: PAN-OS 9.1 versions earlier than PAN-OS 9.1.3. This issue does not impact PAN-OS 8.1, PAN-OS 9.0, or Prisma Access services.

Vulnerable Configurations

Part	Description	Count
OS	Paloaltonetworks Paloaltonetworks PAN OS 9.1.0 Paloaltonetworks PAN OS 9.1.1 Paloaltonetworks PAN OS 9.1.2	3

Common Weakness Enumeration (CWE)

CWE-191 - Integer Underflow (Wrap or Wraparound)

References

https://security.paloaltonetworks.com/CVE-2020-2031