OS Command Injection in Palo Alto PAN-OS
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2012-6591 |
| CWE-ID | CWE-78 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Palo Alto PAN-OS Operating systems & Components / Operating system |
| Vendor | Palo Alto Networks, Inc. |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) OS Command Injection
EUVDB-ID: #VU42597
Risk: Medium
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2012-6591
CWE-ID:
CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Exploit availability: No
DescriptionThe vulnerability allows a remote #AU# to execute arbitrary code.
The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote authenticated administrators to execute arbitrary commands via unspecified vectors, aka Ref ID 31116.
MitigationInstall update from vendor's website.
Vulnerable software versionsPalo Alto PAN-OS: 4.0.0 - 4.0.4
CPE2.3- cpe:2.3:o:palo_alto_networks:pan-os:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:o:palo_alto_networks:pan-os:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:palo_alto_networks:pan-os:4.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:palo_alto_networks:pan-os:4.0.3:*:*:*:*:*:*:*
- cpe:2.3:o:palo_alto_networks:pan-os:4.0.4:*:*:*:*:*:*:*
https://security.paloaltonetworks.com/CVE-2012-6591
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
