Arbitrary OS Command Execution in Palo Alto Networks PAN-OS Management Web Interface

Arbitrary OS Command Execution in Palo Alto Networks PAN-OS Management Web Interface

CVE-2016-3655 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The management web interface in Palo Alto Networks PAN-OS before 5.0.18, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5 allows remote attackers to execute arbitrary OS commands via an unspecified API call.

Learn more about our Web App Pen Testing.