An authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface allows a network-based attacker with specific knowledge of the target firewall or Panorama appliance to impersonate an existing PAN-OS administrator and perform privileged actions.
References
Link | Resource |
---|---|
https://security.paloaltonetworks.com/CVE-2022-0030 | Vendor Advisory |
Configurations
History
14 Oct 2022, 15:33
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-290 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.1 |
References | (MISC) https://security.paloaltonetworks.com/CVE-2022-0030 - Vendor Advisory | |
First Time |
Paloaltonetworks pan-os
Paloaltonetworks |
|
CPE | cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:* |
12 Oct 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-10-12 17:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-0030
Mitre link : CVE-2022-0030
CVE.ORG link : CVE-2022-0030
JSON object : View
Products Affected
paloaltonetworks
- pan-os
CWE
CWE-290
Authentication Bypass by Spoofing