Unrated severityNVD Advisory· Published May 13, 2020· Updated Sep 16, 2024
PAN-OS: Panorama External control of file vulnerability leads to privilege escalation
CVE-2020-2001
Description
An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT processing logic that allows an unauthenticated user with network access to PAN-OS management interface to write attacker supplied file on the system and elevate privileges. This issue affects: All PAN-OS 7.1 Panorama and 8.0 Panorama versions; PAN-OS 8.1 versions earlier than 8.1.12 on Panorama; PAN-OS 9.0 versions earlier than 9.0.6 on Panorama.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=8.0.*, <8.1.12, <9.0.6
- Range: 8.0.*
Patches
Vulnerability mechanics
References
1- security.paloaltonetworks.com/CVE-2020-2001mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.