Main Vulnerability Database SB2020040903

SB2020040903 - Credentials management in Palo Alto VM-Series on Microsoft Azure

Published: April 9, 2020

Security Bulletin ID SB2020040903

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Credentials management (CVE-ID: CVE-2020-1978)

The vulnerability allows a local user to obtain account credentials.

The vulnerability exists due to the TechSupport files generated on VM Series firewalls for Microsoft Azure platform configured with high availability (HA) inadvertently collect Azure dashboard service account credentials. A local administrator can manage all the Azure resources in the subscription except for granting access to other resources.

Note: These credentials do not allow login access to the VMs themselves.

Remediation

Install update from vendor's website.

References

https://security.paloaltonetworks.com/CVE-2020-1978