CVE-2023-0008

PAN-OS: Local File Disclosure Vulnerability in the PAN-OS Web Interface

Description

A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write administrator with access to the web interface to export local files from the firewall through a race condition.

Remediation

Solution:

This issue is fixed in PAN-OS 8.1.25, PAN-OS 9.0.17, PAN-OS 9.1.16, PAN-OS 10.0.12, PAN-OS 10.1.10, PAN-OS 10.2.4, PAN-OS 11.0.1, and all later PAN-OS versions.

Workaround:

This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the impact of this issue by following best practices for securing the PAN-OS web interface. Please review the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at https://docs.paloaltonetworks.com/best-practices https://docs.paloaltonetworks.com/best-practices .

References

Link	Tags
https://security.paloaltonetworks.com/CVE-2023-0008	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2023-0008?: CVE-2023-0008 has been scored as a medium severity vulnerability.
How to fix CVE-2023-0008?: To fix CVE-2023-0008: This issue is fixed in PAN-OS 8.1.25, PAN-OS 9.0.17, PAN-OS 9.1.16, PAN-OS 10.0.12, PAN-OS 10.1.10, PAN-OS 10.2.4, PAN-OS 11.0.1, and all later PAN-OS versions.
Is CVE-2023-0008 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2023-0008 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-0008?: CVE-2023-0008 affects Palo Alto Networks PAN-OS, Palo Alto Networks Prisma Access, Palo Alto Networks Cloud NGFW.

Description

Remediation

Categories

CWE-73 – External Control of File Name or Path

CWE-610 – Externally Controlled Reference to a Resource in Another Sphere

References

Frequently Asked Questions