VYPR
Unrated severityNVD Advisory· Published May 13, 2020· Updated Sep 16, 2024

PAN-OS: GlobalProtect registration open redirect

CVE-2020-1997

Description

An open redirection vulnerability in the GlobalProtect component of Palo Alto Networks PAN-OS allows an attacker to specify an arbitrary redirection target away from the trusted GlobalProtect gateway. If the user then successfully authenticates it will cause them to access an unexpected and potentially malicious website. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.0 versions earlier than 8.0.14.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Paloaltonetworks/Pan OSllm-fuzzy2 versions
    <7.1.26, <8.0.14+ 1 more
    • (no CPE)range: <7.1.26, <8.0.14
    • (no CPE)range: 7.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.