Home

CVE-2020-1996

Description

A missing authorization vulnerability in the management server component of PAN-OS Panorama allows a remote unauthenticated user to inject messages into the management server ms.log file. This vulnerability can be leveraged to obfuscate an ongoing attack or fabricate log entries in the ms.log file This issue affects: All versions of PAN-OS 7.1 and 8.0; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.9.

Risk Information

Base Score
5.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS Score
Exploitation Probability
0.701

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities affected in pan-os 7.1.23NCM
Multiple Vulnerabilities affected in pan-os 7.1.22NCM
Multiple Vulnerabilities affected in pan-os 7.1.21NCM
Multiple Vulnerabilities affected in pan-os 7.1.20NCM
Multiple Vulnerabilities affected in pan-os 7.1.19NCM
Multiple Vulnerabilities affected in pan-os 7.1.16NCM
Multiple Vulnerabilities affected in pan-os 7.1.15NCM
Multiple Vulnerabilities affected in pan-os 7.1.12NCM
Multiple Vulnerabilities affected in pan-os 7.1.7NCM
Multiple Vulnerabilities affected in pan-os 7.1.6NCM
Multiple Vulnerabilities affected in pan-os 7.1.5NCM
Multiple Vulnerabilities affected in pan-os 8.0.18NCM
Multiple Vulnerabilities affected in pan-os 8.0.17NCM
Multiple Vulnerabilities affected in pan-os 8.0.16NCM
Multiple Vulnerabilities affected in pan-os 8.0.15NCM
Multiple Vulnerabilities affected in pan-os 8.0.14NCM
Multiple Vulnerabilities affected in pan-os 8.0.13NCM
Multiple Vulnerabilities affected in pan-os 8.0.12NCM
Multiple Vulnerabilities affected in pan-os 8.0.11-h1NCM
Multiple Vulnerabilities affected in pan-os 8.0.4NCM
Multiple Vulnerabilities affected in pan-os 8.0.3NCM
Multiple Vulnerabilities affected in pan-os 8.0.0NCM
Multiple Vulnerabilities affected in pan-os 7.1.24NCM
Multiple Vulnerabilities affected in pan-os 7.1.13NCM
Multiple Vulnerabilities affected in pan-os 7.1.10NCM
Multiple Vulnerabilities affected in pan-os 7.1.9-h4NCM
Multiple Vulnerabilities affected in pan-os 7.1.9NCM
Multiple Vulnerabilities affected in pan-os 8.0.19NCM
Multiple Vulnerabilities affected in pan-os 7.1.8NCM
Multiple Vulnerabilities affected in pan-os 8.1.3NCM
Multiple Vulnerabilities affected in pan-os 9.0.8NCM
Multiple Vulnerabilities affected in pan-os 9.0.7NCM
Multiple Vulnerabilities affected in pan-os 9.0.6NCM
Multiple Vulnerabilities affected in pan-os 9.0.3NCM
Multiple Vulnerabilities affected in pan-os 8.1.13NCM
Multiple Vulnerabilities affected in pan-os 8.1.5NCM
Multiple Vulnerabilities affected in pan-os 8.1.4-h2NCM
Multiple Vulnerabilities affected in pan-os 8.1.4NCM
Multiple Vulnerabilities affected in pan-os 8.0.8NCM
Multiple Vulnerabilities affected in pan-os 8.0.7NCM
Multiple Vulnerabilities affected in pan-os 8.0.5NCM
Multiple Vulnerabilities affected in pan-os 8.0.4-h2NCM
Multiple Vulnerabilities affected in pan-os 8.0.3-h4NCM
Multiple Vulnerabilities affected in pan-os 8.0.1NCM
Multiple Vulnerabilities affected in pan-os 8.1.0NCM
Multiple Vulnerabilities affected in pan-os 9.0.0NCM
Multiple Vulnerabilities affected in pan-os 8.1.11NCM
Multiple Vulnerabilities affected in pan-os 8.1.6-h2NCM
Multiple Vulnerabilities affected in pan-os 8.1.6NCM
Multiple Vulnerabilities affected in pan-os 8.1.1NCM
Multiple Vulnerabilities affected in pan-os 8.0.9NCM
Multiple Vulnerabilities affected in pan-os 8.0.6NCM
Multiple Vulnerabilities affected in pan-os 8.0.2NCM
Multiple Vulnerabilities affected in pan-os 7.1.17NCM
Multiple Vulnerabilities affected in pan-os 7.1.4-h2NCM
Multiple Vulnerabilities affected in pan-os 7.1.4NCM
Multiple Vulnerabilities affected in pan-os 7.1.3NCM
Multiple Vulnerabilities affected in pan-os 7.1.2NCM
Multiple Vulnerabilities affected in pan-os 7.1.1NCM
Multiple Vulnerabilities affected in pan-os 7.1.0NCM
Multiple Vulnerabilities affected in pan-os 9.0.4NCM
Multiple Vulnerabilities affected in pan-os 8.1.12NCM
Multiple Vulnerabilities affected in pan-os 8.1.8-h4NCM
Multiple Vulnerabilities affected in pan-os 8.1.8NCM
Multiple Vulnerabilities affected in pan-os 8.1.7NCM
Multiple Vulnerabilities affected in pan-os 8.1.2NCM
Multiple Vulnerabilities affected in pan-os 8.0.20NCM
Multiple Vulnerabilities affected in pan-os 8.0.11NCM
Multiple Vulnerabilities affected in pan-os 8.0.10NCM
Multiple Vulnerabilities affected in pan-os 7.1.26NCM
Multiple Vulnerabilities affected in pan-os 7.1.25NCM
Multiple Vulnerabilities affected in pan-os 7.1.18NCM
Multiple Vulnerabilities affected in pan-os 7.1.11NCM
Multiple Vulnerabilities affected in pan-os 9.0.5NCM
Multiple Vulnerabilities affected in pan-os 9.0.2-h4NCM
Multiple Vulnerabilities affected in pan-os 9.0.2NCM
Multiple Vulnerabilities affected in pan-os 9.0.1NCM
Multiple Vulnerabilities affected in pan-os 8.1.9NCM
Multiple Vulnerabilities affected in pan-os 8.1.8-h5NCM
Multiple Vulnerabilities affected in pan-os 8.0.6-h3NCM
Multiple Vulnerabilities affected in pan-os 7.1.14NCM
Missing Authorization Vulnerability (CVE-2020-1996)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234