Arbitrary Code Execution in Palo Alto Networks PAN-OS Web Interface Packet Capture Management Component

Arbitrary Code Execution in Palo Alto Networks PAN-OS Web Interface Packet Capture Management Component

CVE-2017-15940 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The web interface packet capture management component in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote authenticated users to execute arbitrary code via unspecified vectors.

Learn more about our Web App Pen Testing.