Palo Alto 安全中心 2024年11月14日
CVE-2024-5920 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in PAN-OS Enables Impersonation of a Legitimate Administrator (Severity: LOW)
index_new5.html
../../../zaker_core/zaker_tpl_static/wap/tpl_guoji1.html

 

Palo Alto Networks PAN-OS软件存在XSS漏洞,使读写权限的Panorama管理员可向PAN-OS节点推送特制配置,可能导致合法管理员被冒充并执行受限操作,该问题在多个PAN-OS版本中已修复,目前未发现恶意利用情况。

🥇Palo Alto Networks PAN-OS软件存在XSS漏洞,可被利用进行攻击

🎯读写权限的Panorama管理员可推送特制配置,造成管理员被冒充

✅该漏洞在PAN-OS 10.1.14等多个版本中已得到修复

❌Palo Alto Networks未发现此漏洞被恶意利用

A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write Panorama administrator to push a specially crafted configuration to a PAN-OS node. This enables impersonation of a legitimate PAN-OS administrator who can perform restricted actions on the PAN-OS node after the execution of JavaScript in the legitimate PAN-OS administrator's browser.Palo Alto Networks is not aware of any malicious exploitation of this issue.This issue is fixed in PAN-OS 10.1.14, PAN-OS 10.2.11, PAN-OS 11.0.6, PAN-OS 11.1.4, and all later PAN-OS versions.cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h10::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h9::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h14::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h13::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h12::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h11::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h10::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h9::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.1:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.5:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.5:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h12::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h11::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h10::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h9::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-::::::cpe:2.3:o:paloaltonetworks:pan-os:11.0:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h14::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h13::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h12::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h11::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h10::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h9::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h13::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h12::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h11::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h10::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h9::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h15::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h14::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h13::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h11::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h10::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h9::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h16::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h15::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h14::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h13::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h12::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h11::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h9::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h13::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h10::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.2:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.13:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.13:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.12:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.10:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.10:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.10:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.10:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.10:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.10:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.9:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.8:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.7:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.7:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:h8::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:h7::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.6:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.5:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.5:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.5:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.5:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.5:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:h6::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:h5::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:h4::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.4:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.3:h3::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.3:h2::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.3:h1::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.3:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.2:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.1:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1.0:-::::::cpe:2.3:o:paloaltonetworks:pan-os:10.1:-::::::Show MoreShow Less

Fish AI Reader

Fish AI Reader

AI辅助创作,多种专业模板,深度分析,高质量内容生成。从观点提取到深度思考,FishAI为您提供全方位的创作支持。新版本引入自定义参数,让您的创作更加个性化和精准。

FishAI

FishAI

鱼阅,AI 时代的下一个智能信息助手,助你摆脱信息焦虑

联系邮箱 441953276@qq.com

相关标签

Palo Alto Networks XSS漏洞 PAN-OS 漏洞修复
相关文章
Palo Alto Networks將收購IBM QRadar SaaS資產,與IBM建立廣泛的合作關係
Zyxel addressed three RCEs in end-of-life NAS devices
致攻防对抗参赛单位:“内外兼修”才能铸就不坏金身
漏洞预警丨XAMPP在PHP-CGI模式下远程代码执行漏洞(CVE-2024-4577)
安全公司0patch宣布为Windows 10提供五年安全支持 每台收费27美元/5年
Cloud Network Security With Agility and Scale on a Platform
Software Firewalls: The Total Economic Impact