Unrated severityNVD Advisory· Published May 13, 2020· Updated Sep 16, 2024
PAN-OS: Panorama registration denial of service
CVE-2020-2011
Description
An improper input validation vulnerability in the configuration daemon of Palo Alto Networks PAN-OS Panorama allows for a remote unauthenticated user to send a specifically crafted registration request to the device that causes the configuration service to crash. Repeated attempts to send this request result in denial of service to all PAN-OS Panorama services by restarting the device and putting it into maintenance mode. This issue affects: All versions of PAN-OS 7.1, PAN-OS 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7; PAN-OS 9.1 versions earlier than 9.1.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: PAN-OS 7.1, PAN-OS 8.0, PAN-OS 8.1 < 8.1.14, PAN-OS 9.0 < 9.0.7, PAN-OS 9.1 < 9.1.0
- Range: 7.1.*
Patches
Vulnerability mechanics
References
1- security.paloaltonetworks.com/CVE-2020-2011mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.