Palo Alto Networks PAN-OS XML API OS Command Injection Vulnerability

Palo Alto Networks PAN-OS XML API OS Command Injection Vulnerability

CVE-2023-6792 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall.

Learn more about our Cis Benchmark Audit For Palo Alto Networks.