Palo Alto PAN-OS Remote Code Execution Vulnerability

Release Date: 24 / 07 / 2019
Last Update: 09 / 10 / 2019
Risk Level:  

A vulnerability was identified in Palo Alto PAN-OS, a remote user could exploit this vulnerability to trigger remote code execution on the targeted system.

[Updated 8-Oct-2019]: We noticed this vulnerability was reported being used in scattered attacks. As such, the risk level is changed from Medium to High.

  • Remote Code Execution
  • PAN-OS 7.1.18 and earlier
  • PAN-OS 8.0.11 and earlier
  • PAN-OS 8.1.2 and earlier

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • PAN-OS 7.1.19 and later
  • PAN-OS 8.0.12 and later
  • PAN-OS 8.1.3 and later