Insecure Temporary File Vulnerability in Palo Alto Networks Traps Allows Privilege Escalation and System File Overwrite

Insecure Temporary File Vulnerability in Palo Alto Networks Traps Allows Privilege Escalation and System File Overwrite

CVE-2020-1991 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

An insecure temporary file vulnerability in Palo Alto Networks Traps allows a local authenticated Windows user to escalate privileges or overwrite system files. This issue affects Palo Alto Networks Traps 5.0 versions before 5.0.8; 6.1 versions before 6.1.4 on Windows. This issue does not affect Cortex XDR 7.0. This issue does not affect Traps for Linux or MacOS.

Learn more about our Cis Benchmark Audit For Apple Macos.