Medium severity5.3NVD Advisory· Published Dec 11, 2017· Updated Jun 17, 2026
CVE-2017-15943
CVE-2017-15943
Description
The configuration file import for applications, spyware and vulnerability objects functionality in the web interface in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, and 7.1.x before 7.1.14 allows remote attackers to conduct server-side request forgery (SSRF) attacks and consequently obtain sensitive information via vectors related to parsing of external entities.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*range: <6.1.19
- (no CPE)range: <6.1.19, <7.0.19, <7.1.14
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/102074nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040005nvdThird Party AdvisoryVDB Entry
- security.paloaltonetworks.com/CVE-2017-15943nvd
News mentions
0No linked articles in our index yet.