Home

CVE-2020-2034

Description

An OS Command Injection vulnerability in the PAN-OS GlobalProtect portal allows an unauthenticated network based attacker to execute arbitrary OS commands with root privileges. An attacker requires some knowledge of the firewall to exploit this issue. This issue can not be exploited if GlobalProtect portal feature is not enabled. This issue impacts PAN-OS 9.1 versions earlier than PAN-OS 9.1.3; PAN-OS 8.1 versions earlier than PAN-OS 8.1.15; PAN-OS 9.0 versions earlier than PAN-OS 9.0.9; all versions of PAN-OS 8.0 and PAN-OS 7.1. Prisma Access services are not impacted by this vulnerability.

Risk Information

Base Score
8.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
61.42

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities affected in pan-os 8.1.14NCM
Multiple Vulnerabilities affected in pan-os 7.1.26NCM
Multiple Vulnerabilities affected in pan-os 8.1.13NCM
Multiple Vulnerabilities affected in pan-os 9.1.0NCM
Multiple Vulnerabilities affected in pan-os 9.0.5NCM
Multiple Vulnerabilities affected in pan-os 9.0.2-h4NCM
Multiple Vulnerabilities affected in pan-os 9.0.2NCM
Multiple Vulnerabilities affected in pan-os 9.0.1NCM
Multiple Vulnerabilities affected in pan-os 7.1.24NCM
Multiple Vulnerabilities affected in pan-os 7.1.13NCM
Multiple Vulnerabilities affected in pan-os 7.1.10NCM
Multiple Vulnerabilities affected in pan-os 7.1.9-h4NCM
Multiple Vulnerabilities affected in pan-os 7.1.9NCM
Multiple Vulnerabilities affected in pan-os 9.0.7NCM
Multiple Vulnerabilities affected in pan-os 8.0.19NCM
Multiple Vulnerabilities affected in pan-os 8.0.8NCM
Multiple Vulnerabilities affected in pan-os 8.0.7NCM
Multiple Vulnerabilities affected in pan-os 8.0.5NCM
Multiple Vulnerabilities affected in pan-os 8.0.4-h2NCM
Multiple Vulnerabilities affected in pan-os 8.0.3-h4NCM
Multiple Vulnerabilities affected in pan-os 8.0.1NCM
Multiple Vulnerabilities affected in pan-os 9.0.8NCM
Multiple Vulnerabilities affected in pan-os 9.0.3NCM
Multiple Vulnerabilities affected in pan-os 8.1.11NCM
Multiple Vulnerabilities affected in pan-os 8.1.6-h2NCM
Multiple Vulnerabilities affected in pan-os 8.1.6NCM
Multiple Vulnerabilities affected in pan-os 8.1.1NCM
Multiple Vulnerabilities affected in pan-os 9.0.6NCM
Multiple Vulnerabilities affected in pan-os 8.1.8-h4NCM
Multiple Vulnerabilities affected in pan-os 8.1.8NCM
Multiple Vulnerabilities affected in pan-os 8.1.7NCM
Multiple Vulnerabilities affected in pan-os 8.1.2NCM
Multiple Vulnerabilities affected in pan-os 8.0.9NCM
Multiple Vulnerabilities affected in pan-os 8.0.6NCM
Multiple Vulnerabilities affected in pan-os 8.0.2NCM
Multiple Vulnerabilities affected in pan-os 7.1.8NCM
Multiple Vulnerabilities affected in pan-os 9.0.0NCM
Multiple Vulnerabilities affected in pan-os 8.1.9NCM
Multiple Vulnerabilities affected in pan-os 8.1.8-h5NCM
Multiple Vulnerabilities affected in pan-os 8.0.11NCM
Multiple Vulnerabilities affected in pan-os 8.0.10NCM
Vulnerabilities CVE-2020-2028 ,CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.17NCM
Vulnerabilities CVE-2020-2028 ,CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.4-h2NCM
Vulnerabilities CVE-2020-2028 ,CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.4NCM
Vulnerabilities CVE-2020-2028 ,CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.3NCM
Vulnerabilities CVE-2020-2028 ,CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.2NCM
Vulnerabilities CVE-2020-2028 ,CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.1NCM
Vulnerabilities CVE-2020-2028 ,CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.0NCM
Multiple Vulnerabilities affected in pan-os 8.1.12NCM
Multiple Vulnerabilities affected in pan-os 8.1.3NCM
Multiple Vulnerabilities affected in pan-os 8.0.20NCM
Multiple Vulnerabilities affected in pan-os 8.0.6-h3NCM
Vulnerabilities CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.25NCM
Vulnerabilities CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.18NCM
Vulnerabilities CVE-2020-2029 ,CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.11NCM
Multiple Vulnerabilities affected in pan-os 8.1.5NCM
Multiple Vulnerabilities affected in pan-os 8.1.4-h2NCM
Multiple Vulnerabilities affected in pan-os 8.1.4NCM
Multiple Vulnerabilities affected in pan-os 8.0.13NCM
Multiple Vulnerabilities affected in pan-os 8.0.12NCM
Multiple Vulnerabilities affected in pan-os 8.0.11-h1NCM
Multiple Vulnerabilities affected in pan-os 8.0.4NCM
Multiple Vulnerabilities affected in pan-os 8.0.3NCM
Multiple Vulnerabilities affected in pan-os 8.0.0NCM
Vulnerabilities CVE-2020-2030 ,CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.14NCM
Multiple Vulnerabilities affected in pan-os 9.1.2NCM
Multiple Vulnerabilities affected in pan-os 9.1.1NCM
Multiple Vulnerabilities affected in pan-os 9.0.4NCM
Multiple Vulnerabilities affected in pan-os 8.1.0NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 ,CVE-2020-2040 ,CVE-2020-2041 ,CVE-2020-2044 are affected in pan-os 8.0.18NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 ,CVE-2020-2040 ,CVE-2020-2041 ,CVE-2020-2044 are affected in pan-os 8.0.17NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 ,CVE-2020-2040 ,CVE-2020-2041 ,CVE-2020-2044 are affected in pan-os 8.0.16NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 ,CVE-2020-2040 ,CVE-2020-2041 ,CVE-2020-2044 are affected in pan-os 8.0.15NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 ,CVE-2020-2040 ,CVE-2020-2041 ,CVE-2020-2044 are affected in pan-os 8.0.14NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.23NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.22NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.21NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.20NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.19NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.16NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.15NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.12NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.7NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.6NCM
Vulnerabilities CVE-2020-2034 ,CVE-2020-2035 are affected in pan-os 7.1.5NCM
Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability (CVE-2020-2034)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234