ID:3567 - Exploit for Permissions, Privileges, and Access Controls in Palo Alto PAN-OS - CVE-2016-9151

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:3567 - Exploit for Permissions, Privileges, and Access Controls in Palo Alto PAN-OS - CVE-2016-9151

ID:3567 - Exploit for Permissions, Privileges, and Access Controls in Palo Alto PAN-OS - CVE-2016-9151

Published: July 20, 2020


Vulnerability identifier: #VU31449
Vulnerability risk: Low
CVE-ID: CVE-2016-9151
CWE-ID: CWE-264
Exploitation vector: Local access
Vulnerable software:
Palo Alto PAN-OS

Link to public exploit:


Vulnerability description

The vulnerability allows a local authenticated user to execute arbitrary code.

Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 allows local users to gain privileges via crafted values of unspecified environment variables.


Remediation

Install update from vendor's website.