Integer underflow in Palo Alto PAN-OS
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2020-2031 |
| CWE-ID | CWE-191 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #1 is available. |
| Vulnerable software Subscribe |
Palo Alto PAN-OS Operating systems & Components / Operating system |
| Vendor | Palo Alto Networks, Inc. |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Integer underflow
EUVDB-ID: #VU29606
Risk: Low
CVSSv3.1: 4.4 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C]
CVE-ID: CVE-2020-2031
CWE-ID:
CWE-191 - Integer underflow
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform a denial of service (DoS) attack.
The vulnerability exists due to integer underflow in the dnsproxyd component of the PAN-OS management interface. A remote authenticated administrator attacker can send a specially crafted request to the affected application, trigger integer underflow and perform a denial of service attack by restarting the device and putting it into maintenance mode.
MitigationInstall updates from vendor's website.
Vulnerable software versionsPalo Alto PAN-OS: 9.1.0 - 9.1.2
External linkshttp://security.paloaltonetworks.com/CVE-2020-2031
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
