#VU27898 Improper Authorization in Palo Alto PAN-OS - CVE-2020-1998

Cybersecurity Help s.r.o.

Published: 2020-05-14

Vulnerability identifier: #VU27898

Vulnerability risk: Low

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2020-1998

CWE-ID: CWE-285

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Palo Alto PAN-OS
Operating systems & Components / Operating system

Vendor: Palo Alto Networks, Inc.

Description

The vulnerability allows a remote user to gain elevated privileges on the system.

The vulnerability exists within SAML SSO in PAN-OS that mistakenly uses the permissions of local Linux users instead of the intended SAML permissions of the account when the username is shared for the purposes of SSO authentication. A remote user can escalate privileges on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Palo Alto PAN-OS: 7.1.0 - 7.1.25, 8.1.0 - 8.1.12, 9.0.0 - 9.0.5, 9.1.0

External links
https://security.paloaltonetworks.com/CVE-2020-1998

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Palo Alto Networks PAN-OS