Unrated severityNVD Advisory· Published May 13, 2020· Updated Sep 17, 2024
PAN-OS: Panorama management server log injection
CVE-2020-1996
Description
A missing authorization vulnerability in the management server component of PAN-OS Panorama allows a remote unauthenticated user to inject messages into the management server ms.log file. This vulnerability can be leveraged to obfuscate an ongoing attack or fabricate log entries in the ms.log file This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.9.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.9
- Range: 7.1.*
Patches
Vulnerability mechanics
References
1- security.paloaltonetworks.com/CVE-2020-1996mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.