Vulnerabilities > CVE-2021-3056 - Out-of-bounds Write vulnerability in Paloaltonetworks Pan-Os

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

paloaltonetworks

CWE-787

NVD

Published: 2021-11-10

Updated: 2021-11-15

Summary

A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN enables an authenticated attacker to execute arbitrary code with root user privileges during SAML authentication. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.20; PAN-OS 9.0 versions earlier than PAN-OS 9.0.14; PAN-OS 9.1 versions earlier than PAN-OS 9.1.9; PAN-OS 10.0 versions earlier than PAN-OS 10.0.1. Prisma Access customers with Prisma Access 2.1 Preferred firewalls are impacted by this issue.

Vulnerable Configurations

Part	Description	Count
OS	Paloaltonetworks Paloaltonetworks PAN OS 9.0.0 Paloaltonetworks PAN OS 9.0.1 Paloaltonetworks PAN OS 9.0.2 Paloaltonetworks PAN OS 9.0.3 Paloaltonetworks PAN OS 9.0.4 Paloaltonetworks PAN OS 9.0.5 Paloaltonetworks PAN OS 9.0.6 Paloaltonetworks PAN OS 9.0.7 Paloaltonetworks PAN OS 9.0.8 Paloaltonetworks PAN OS 9.0.9 Paloaltonetworks PAN OS 9.0.10 Paloaltonetworks PAN OS 9.0.11 Paloaltonetworks PAN OS 9.0.12 Paloaltonetworks PAN OS 9.0.13 Paloaltonetworks PAN OS 9.0.14 Paloaltonetworks PAN OS 9.1.0 Paloaltonetworks PAN OS 9.1.1 Paloaltonetworks PAN OS 9.1.2 Paloaltonetworks PAN OS 9.1.3 Paloaltonetworks PAN OS 9.1.4 Paloaltonetworks PAN OS 9.1.5 Paloaltonetworks PAN OS 9.1.6 Paloaltonetworks PAN OS 8.1.0 Paloaltonetworks PAN OS 8.1.1 Paloaltonetworks PAN OS 8.1.2 Paloaltonetworks PAN OS 8.1.3 Paloaltonetworks PAN OS 8.1.4 Paloaltonetworks PAN OS 8.1.5 Paloaltonetworks PAN OS 8.1.6 Paloaltonetworks PAN OS 8.1.7 Paloaltonetworks PAN OS 8.1.8 Paloaltonetworks PAN OS 8.1.9 Paloaltonetworks PAN OS 8.1.10 Paloaltonetworks PAN OS 8.1.11 Paloaltonetworks PAN OS 8.1.12 Paloaltonetworks PAN OS 8.1.13 Paloaltonetworks PAN OS 8.1.14 Paloaltonetworks PAN OS 8.1.15 Paloaltonetworks PAN OS 8.1.16 Paloaltonetworks PAN OS 8.1.17 Paloaltonetworks PAN OS 8.1.18 Paloaltonetworks PAN OS 8.1.19 Paloaltonetworks PAN OS 8.1.20 Paloaltonetworks PAN OS 10.0.0	49

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://security.paloaltonetworks.com/CVE-2021-3056