Arbitrary JavaScript and HTML Injection in PAN-OS Session Browser

Arbitrary JavaScript and HTML Injection in PAN-OS Session Browser

CVE-2018-9335 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

The PAN-OS session browser in PAN-OS 6.1.20 and earlier, PAN-OS 7.1.16 and earlier, PAN-OS 8.0.9 and earlier, and PAN-OS 8.1.1 and earlier may allow an attacker to inject arbitrary JavaScript or HTML.

Learn more about our Web Application Penetration Testing UK.