CVE-2017-15944
CVE-2017-15944
In short
A vulnerability in Palo Alto Networks PAN-OS allows attackers to run malicious code remotely through the management interface. This is critical because it gives attackers complete control over the firewall without needing valid credentials or user interaction.
Technical detail
Remote code execution via improper input validation (CWE-119, CWE-20) on the management interface of PAN-OS versions 6.1.x, 7.0.x, 7.1.x, and 8.0.x prior to specified patches. Exploitation requires network access to the management interface; successful exploitation grants arbitrary code execution with system privileges.
Summary generated and translated by AI from the official description.
Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 8
githubgithub.com/surajraghuvanshi/PaloAltoRceDetectionAndExploit★ 6githubgithub.com/xxnbyy/CVE-2017-15944-POC★ 2githubgithub.com/yukar1z0e/CVE-2017-15944★ 0githubgithub.com/P4x1s/PaloAlto_EXP★ 0exploitdbwww.exploit-db.com/exploits/44597unverifiedcve_referencewww.exploit-db.com/exploits/44597/unverifiedexploitdbwww.exploit-db.com/exploits/43342unverifiedcve_referencewww.exploit-db.com/exploits/43342/unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://security.paloaltonetworks.com/CVE-2017-15944https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-15944https://www.exploit-db.com/exploits/43342/https://www.exploit-db.com/exploits/44597/http://www.securityfocus.com/bid/102079http://www.securitytracker.com/id/1040007