Palo Alto Patches Zero-Day Vulnerability in Firewall Product

Fellow security researchers discovered a vulnerability in the PanOS firewalls produced by Palo Alto Networks. The research team that discovered the vulnerability works with security firm Randori.

The Randori team developed a methodology and an active exploit that allowed them to obtain remote code execution capabilities on Palo Alto firewall platform. The vulnerability has been codified and cataloged as CVE 2021-3064 and has received an extremely high severity rating of 9.8 out of a maximum 10 points.

Even though it was initially believed that the vulnerability allowed for remote code execution on multiple versions of Palo Alto's PanOS, later Palo Alto clarified that the vulnerability only affected PanOS 8.1 and more specifically, versions earlier than 8.1.17.

The approximate number of affected systems was also shrunk from an initial inaccurate estimate of 70,000 to just about 10,000 devices, after Palo Alto provided the additional information.

The vulnerability has now been patched by Palo Alto and the new update is expected to be fully rolled out and applied within the next 30 days. Following this period, Randori will provide fuller disclosure on the nature of the patched vulnerability.

So far researchers have revealed that the vulnerability allows shell-level code execution and abuses a buffer overflow state that takes place when the system is parsing user inputs into a specific portion of the memory stack. Before a potential threat actor would be able to exploit this, they would first need to use resort to HTTP smuggling. This is the only way to gain access to the exploitable buffer overflow vulnerability.

Randori will very likely release the full details and specific code used in constructing the exploit once users have had time to update their configurations.

By Zaib
November 11, 2021
Computer Security
English
November 11, 2021
Computer Security

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

Adware

Remove Engineering Group Inc Product

Engineering Group Inc Product appears to be the name of an app or a software vendor, which users often complain from. Further research into Engineering Group Inc Product's dealings shows that this name might be linked... Read more

July 30, 2021
Computer Security

Researchers Detail Now-Patched WhatsApp Vulnerability

In a recent post made by the security researchers working with Check Point, a team disclosed an old vulnerability in a now-outdated version of WhatsApp that could have led to potential exposure of personal information... Read more

September 3, 2021
Computer Security

Western Digital Devices Hit by New Vulnerability

The shock that thousands of users felt when they discovered their Western Digital My Book Live devices had been wiped clean in a destructive hack attack in late June is probably still fresh in their memory. Now... Read more

July 8, 2021
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.