#VU8077 XXE attack in Palo Alto PAN-OS - CVE-2017-9458
Published: September 4, 2017
Vulnerability identifier: #VU8077
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2017-9458
CWE-ID: CWE-611
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Palo Alto PAN-OS
Palo Alto PAN-OS
Software vendor:
Palo Alto Networks, Inc.
Palo Alto Networks, Inc.
Description
The vulnerability allows a remote attacker to conduct XXE attack on the target system.
The weakness exists in the encryption library due to improper handling of XML External Entity (XXE) entries when parsing an XML file. A remote attacker can supply a specially crafted XML External Entity (XXE) data to the target GlobalProtect internal and external gateway to read arbitrary files.
Successful exploitation of the vulnerability may result in information disclosure.
The weakness exists in the encryption library due to improper handling of XML External Entity (XXE) entries when parsing an XML file. A remote attacker can supply a specially crafted XML External Entity (XXE) data to the target GlobalProtect internal and external gateway to read arbitrary files.
Successful exploitation of the vulnerability may result in information disclosure.
Remediation
The vulnerability is addressed in the following versions: 6.1.18, 7.0.17, 7.1.12, 8.0.3.