A credential disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-only administrator to obtain the plaintext credentials of stored external system integrations such as LDAP, SCP, RADIUS, TACACS+, and SNMP from the web interface.
References
Link | Resource |
---|---|
https://security.paloaltonetworks.com/CVE-2023-6791 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
18 Dec 2023, 18:53
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-522 | |
References | () https://security.paloaltonetworks.com/CVE-2023-6791 - Vendor Advisory | |
CPE | cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:*:*:*:*:*:*:* cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:* |
|
First Time |
Paloaltonetworks
Paloaltonetworks pan-os |
|
Summary |
|
13 Dec 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-13 19:15
Updated : 2023-12-18 18:53
NVD link : CVE-2023-6791
Mitre link : CVE-2023-6791
CVE.ORG link : CVE-2023-6791
JSON object : View
Products Affected
paloaltonetworks
- pan-os