CVE-2022-0028

{"id": "CVE-2022-0028", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "psirt@paloaltonetworks.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 3.9}]}, "published": "2022-08-10T16:15:08.343", "references": [{"url": "https://security.paloaltonetworks.com/CVE-2022-0028", "tags": ["Mitigation", "Third Party Advisory"], "source": "psirt@paloaltonetworks.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}, {"type": "Secondary", "source": "psirt@paloaltonetworks.com", "description": [{"lang": "en", "value": "CWE-406"}]}], "descriptions": [{"lang": "en", "value": "A PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct reflected and amplified TCP denial-of-service (RDoS) attacks. The DoS attack would appear to originate from a Palo Alto Networks PA-Series (hardware), VM-Series (virtual) and CN-Series (container) firewall against an attacker-specified target. To be misused by an external attacker, the firewall configuration must have a URL filtering profile with one or more blocked categories assigned to a source zone that has an external facing interface. This configuration is not typical for URL filtering and, if set, is likely unintended by the administrator. If exploited, this issue would not impact the confidentiality, integrity, or availability of our products. However, the resulting denial-of-service (DoS) attack may help obfuscate the identity of the attacker and implicate the firewall as the source of the attack. We have taken prompt action to address this issue in our PAN-OS software. All software updates for this issue are expected to be released no later than the week of August 15, 2022. This issue does not impact Panorama M-Series or Panorama virtual appliances. This issue has been resolved for all Cloud NGFW and Prisma Access customers and no additional action is required from them."}, {"lang": "es", "value": "Una mala configuraci\u00f3n de la pol\u00edtica de filtrado de URL de PAN-OS podr\u00eda permitir a un atacante basado en la red conducir ataques de denegaci\u00f3n de servicio TCP reflejados y amplificados (RDoS). El ataque de denegaci\u00f3n de servicio parecer\u00eda originarse desde un firewall de la serie PA (hardware), la serie VM (virtual) y la serie CN (contenedor) de Palo Alto Networks contra un objetivo especificado por el atacante. Para que un atacante externo haga un uso no debido, la configuraci\u00f3n del firewall debe tener un perfil de filtrado de URL con una o m\u00e1s categor\u00edas bloqueadas asignadas a una zona de origen que tenga una interfaz de cara al exterior. Esta configuraci\u00f3n no es t\u00edpica para el filtrado de URL y, si es establecido, es probable que no sea intencionada por el administrador. Si es explotado, este problema no afectar\u00eda a la confidencialidad, integridad o disponibilidad de nuestros productos. Sin embargo, el ataque de denegaci\u00f3n de servicio (DoS) resultando puede ayudar a ofuscar la identidad del atacante e implicar al firewall como la fuente del ataque. Hemos tomado medidas r\u00e1pidas para abordar este problema en nuestro software PAN-OS. Es esperado que todas las actualizaciones de software para este problema sean publicadas a m\u00e1s tardar en la semana del 15 de agosto de 2022. Este problema no afecta a dispositivos virtuales de Panorama M-Series o Panorama. Este problema ha sido resuelto para todos los clientes de Cloud NGFW y Prisma Access y no es requerida ninguna acci\u00f3n adicional por su parte"}], "lastModified": "2022-08-24T13:26:20.060", "cisaActionDue": "2022-09-12", "cisaExploitAdd": "2022-08-22", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9D5CD3F-8347-4C94-8B72-9B1C7FD3A984", "versionEndExcluding": "8.1.23-h1", "versionStartIncluding": "8.1"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3BF79438-71C0-4F1B-8FB0-A4E684C91F11", "versionEndExcluding": "9.0.16-h3", "versionStartIncluding": "9.0"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7532CAA4-CB31-4E6E-857E-8B4B8154B6FB", "versionEndExcluding": "9.1.14-h4", "versionStartIncluding": "9.1"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22F27D6B-A721-4566-B4FE-1E7810CB5A3A", "versionEndExcluding": "10.0.11-h1", "versionStartIncluding": "10.0"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E268991D-F56F-4378-83BB-122698EA36FD", "versionEndExcluding": "10.1.6-h6", "versionStartIncluding": "10.1"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBE926B3-4C83-4242-942C-1264467E40C7", "versionEndExcluding": "10.2.2-h2", "versionStartIncluding": "10.2"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@paloaltonetworks.com", "cisaRequiredAction": "Apply updates per vendor instructions.", "cisaVulnerabilityName": "Palo Alto Networks PAN-OS Reflected Amplification Denial-of-Service Vulnerability"}