Home

CVE-2020-2017

Description

A DOM-Based Cross Site Scripting Vulnerability exists in PAN-OS and Panorama Management Web Interfaces. A remote attacker able to convince an authenticated administrator to click on a crafted link to PAN-OS and Panorama Web Interfaces could execute arbitrary JavaScript code in the administrators browser and perform administrative actions. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions earlier than 9.0.6; All versions of PAN-OS 8.0.

Risk Information

Base Score
6.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.491

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities affected in pan-os 9.0.5NCM
Multiple Vulnerabilities affected in pan-os 9.0.2-h4NCM
Multiple Vulnerabilities affected in pan-os 9.0.2NCM
Multiple Vulnerabilities affected in pan-os 9.0.1NCM
Multiple Vulnerabilities affected in pan-os 8.1.5NCM
Multiple Vulnerabilities affected in pan-os 8.1.4-h2NCM
Multiple Vulnerabilities affected in pan-os 8.1.4NCM
Multiple Vulnerabilities affected in pan-os 8.0.18NCM
Multiple Vulnerabilities affected in pan-os 8.0.17NCM
Multiple Vulnerabilities affected in pan-os 8.0.16NCM
Multiple Vulnerabilities affected in pan-os 8.0.15NCM
Multiple Vulnerabilities affected in pan-os 8.0.14NCM
Multiple Vulnerabilities affected in pan-os 7.1.24NCM
Multiple Vulnerabilities affected in pan-os 7.1.13NCM
Multiple Vulnerabilities affected in pan-os 7.1.10NCM
Multiple Vulnerabilities affected in pan-os 7.1.9-h4NCM
Multiple Vulnerabilities affected in pan-os 7.1.9NCM
Multiple Vulnerabilities affected in pan-os 8.1.0NCM
Multiple Vulnerabilities affected in pan-os 8.0.19NCM
Multiple Vulnerabilities affected in pan-os 8.0.8NCM
Multiple Vulnerabilities affected in pan-os 8.0.7NCM
Multiple Vulnerabilities affected in pan-os 8.0.5NCM
Multiple Vulnerabilities affected in pan-os 8.0.4-h2NCM
Multiple Vulnerabilities affected in pan-os 8.0.3-h4NCM
Multiple Vulnerabilities affected in pan-os 8.0.1NCM
Multiple Vulnerabilities affected in pan-os 7.1.8NCM
Multiple Vulnerabilities affected in pan-os 9.0.3NCM
Multiple Vulnerabilities affected in pan-os 8.1.11NCM
Multiple Vulnerabilities affected in pan-os 8.1.6-h2NCM
Multiple Vulnerabilities affected in pan-os 8.1.6NCM
Multiple Vulnerabilities affected in pan-os 8.1.1NCM
Multiple Vulnerabilities affected in pan-os 8.0.9NCM
Multiple Vulnerabilities affected in pan-os 8.0.6NCM
Multiple Vulnerabilities affected in pan-os 8.0.2NCM
Multiple Vulnerabilities affected in pan-os 7.1.17NCM
Multiple Vulnerabilities affected in pan-os 7.1.4-h2NCM
Multiple Vulnerabilities affected in pan-os 7.1.4NCM
Multiple Vulnerabilities affected in pan-os 7.1.3NCM
Multiple Vulnerabilities affected in pan-os 7.1.2NCM
Multiple Vulnerabilities affected in pan-os 7.1.1NCM
Multiple Vulnerabilities affected in pan-os 7.1.0NCM
Multiple Vulnerabilities affected in pan-os 8.1.8-h4NCM
Multiple Vulnerabilities affected in pan-os 8.1.8NCM
Multiple Vulnerabilities affected in pan-os 8.1.7NCM
Multiple Vulnerabilities affected in pan-os 8.1.2NCM
Multiple Vulnerabilities affected in pan-os 8.0.11NCM
Multiple Vulnerabilities affected in pan-os 8.0.10NCM
Multiple Vulnerabilities affected in pan-os 7.1.25NCM
Multiple Vulnerabilities affected in pan-os 7.1.18NCM
Multiple Vulnerabilities affected in pan-os 7.1.11NCM
Multiple Vulnerabilities affected in pan-os 9.0.0NCM
Multiple Vulnerabilities affected in pan-os 8.1.12NCM
Multiple Vulnerabilities affected in pan-os 8.1.9NCM
Multiple Vulnerabilities affected in pan-os 8.1.8-h5NCM
Multiple Vulnerabilities affected in pan-os 8.0.20NCM
Multiple Vulnerabilities affected in pan-os 8.0.6-h3NCM
Multiple Vulnerabilities affected in pan-os 7.1.14NCM
Multiple Vulnerabilities affected in pan-os 9.0.4NCM
Multiple Vulnerabilities affected in pan-os 8.1.3NCM
Multiple Vulnerabilities affected in pan-os 8.0.13NCM
Multiple Vulnerabilities affected in pan-os 8.0.12NCM
Multiple Vulnerabilities affected in pan-os 8.0.11-h1NCM
Multiple Vulnerabilities affected in pan-os 8.0.4NCM
Multiple Vulnerabilities affected in pan-os 8.0.3NCM
Multiple Vulnerabilities affected in pan-os 8.0.0NCM
Multiple Vulnerabilities affected in pan-os 7.1.23NCM
Multiple Vulnerabilities affected in pan-os 7.1.22NCM
Multiple Vulnerabilities affected in pan-os 7.1.21NCM
Multiple Vulnerabilities affected in pan-os 7.1.20NCM
Multiple Vulnerabilities affected in pan-os 7.1.19NCM
Multiple Vulnerabilities affected in pan-os 7.1.16NCM
Multiple Vulnerabilities affected in pan-os 7.1.15NCM
Multiple Vulnerabilities affected in pan-os 7.1.12NCM
Multiple Vulnerabilities affected in pan-os 7.1.7NCM
Multiple Vulnerabilities affected in pan-os 7.1.6NCM
Multiple Vulnerabilities affected in pan-os 7.1.5NCM
Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability (CVE-2020-2017)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234