Vulnerability CVE-2020-2034 - CERT Civis.Net

Vulnerability Name:

CVE-2020-2034 (CCN-184820)

Assigned:

2019-12-04

Published:

2020-07-08

Updated:

2020-07-14

Summary:

An OS Command Injection vulnerability in the PAN-OS GlobalProtect portal allows an unauthenticated network based attacker to execute arbitrary OS commands with root privileges. An attacker requires some knowledge of the firewall to exploit this issue. This issue can not be exploited if GlobalProtect portal feature is not enabled. This issue impacts PAN-OS 9.1 versions earlier than PAN-OS 9.1.3; PAN-OS 8.1 versions earlier than PAN-OS 8.1.15; PAN-OS 9.0 versions earlier than PAN-OS 9.0.9; all versions of PAN-OS 8.0 and PAN-OS 7.1. Prisma Access services are not impacted by this vulnerability.

CVSS v3 Severity:

8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

8.1 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.6 High (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2020-2034

Source: XF
Type: UNKNOWN
panos-cve20202034-command-exec(184820)

Source: CCN
Type: Palo Alto Networks Security Advisories
CVE-2020-2034 PAN-OS: OS command injection vulnerability in GlobalProtect portal

Source: MISC
Type: Vendor Advisory
https://security.paloaltonetworks.com/CVE-2020-2034

Vulnerable Configuration:

Configuration 1:

cpe:/o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:* (Version >= 7.1.0 and <= 7.1.26)

OR cpe:/o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:* (Version >= 8.0.0 and <= 8.0.20)

OR cpe:/o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:* (Version >= 8.1.0 and < 8.1.15)

OR cpe:/o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:* (Version >= 9.0.0 and < 9.0.9)

OR cpe:/o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:* (Version >= 9.1.0 and < 9.1.3)

Configuration CCN 1:

cpe:/o:paloaltonetworks:pan-os:7.1.1:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.4:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.5:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.7:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.8:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.1:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.2:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.11:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.13:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.5:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.12:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.1:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.9:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.16:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.2:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.18:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.11:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.3:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.21:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.14:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.5:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.22:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.15:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.6:-:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.0:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.2:-:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.18:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.8:h4:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.2:h4:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.2:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.3:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.6:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.9:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.14:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.15:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.17:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.19:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.20:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.23:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.24:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.3:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.4:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.6:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.7:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.8:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.10:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.12:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.11:h1:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.13:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.16:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.17:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.19:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.3:h4:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.4:h2:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.0.6:h3:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.4:-:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.4:h2:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.6:h2:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.7:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.8:-:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.9:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.1:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.3:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.4:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.11:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.5:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.12:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.6:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.13:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.7:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.1.1:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.0.8:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:7.1.25:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.1.0:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:8.1.14:*:*:*:*:*:*:*

OR cpe:/o:paloaltonetworks:pan-os:9.1.2:*:*:*:*:*:*:*

Denotes that component is vulnerable