Incorrect Permission Validation in Palo Alto Networks PAN-OS Management Web Interface

Incorrect Permission Validation in Palo Alto Networks PAN-OS Management Web Interface

CVE-2017-7644 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.17, 7.x before 7.0.15, and 7.1.x before 7.1.9 allows remote authenticated users to obtain sensitive information by leveraging incorrect permission validation, aka PAN-SA-2017-0013 and PAN-70541.

Learn more about our Web App Pen Testing.