Arbitrary OS Command Execution in Palo Alto Networks PAN-OS CLI

Arbitrary OS Command Execution in Palo Alto Networks PAN-OS CLI

CVE-2016-3654 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The device management command line interface (CLI) in Palo Alto Networks PAN-OS before 5.0.18, 5.1.x before 5.1.11, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote authenticated administrators to execute arbitrary OS commands via an SSH command parameter.

Learn more about our Cis Benchmark Audit For Palo Alto Networks.