CVE-2017-17841

Published: Jan 10, 2018Modified: Nov 21, 2024

5.9

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.2 / Impact: 3.6

Source: NVD

Description

Palo Alto Networks PAN-OS 6.1, 7.1, and 8.0.x before 8.0.7, when an interface implements SSL decryption with RSA enabled or hosts a GlobalProtect portal or gateway, might allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.

Affected (24)

Products: Paloaltonetworks: Pan Os

Paloaltonetworks

1 product

Pan Os

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Paloaltonetworks Pan Os	Version 6.1.0

Configuration B

16 vulnerable

Vulnerable Software	Affected Versions
Paloaltonetworks Pan Os	Version 7.1.0
Paloaltonetworks Pan Os	Version 7.1.10
Paloaltonetworks Pan Os	Version 7.1.11
Paloaltonetworks Pan Os	Version 7.1.12
Paloaltonetworks Pan Os	Version 7.1.13
Paloaltonetworks Pan Os	Version 7.1.14
Paloaltonetworks Pan Os	Version 7.1.1
Paloaltonetworks Pan Os	Version 7.1.2
Paloaltonetworks Pan Os	Version 7.1.3
Paloaltonetworks Pan Os	Version 7.1.4-h2
Paloaltonetworks Pan Os	Version 7.1.4
Paloaltonetworks Pan Os	Version 7.1.5
Paloaltonetworks Pan Os	Version 7.1.6
Paloaltonetworks Pan Os	Version 7.1.7
Paloaltonetworks Pan Os	Version 7.1.8
Paloaltonetworks Pan Os	Version 7.1.9

Configuration C

7 vulnerable

Vulnerable Software	Affected Versions
Paloaltonetworks Pan Os	Version 8.0.0
Paloaltonetworks Pan Os	Version 8.0.1
Paloaltonetworks Pan Os	Version 8.0.2
Paloaltonetworks Pan Os	Version 8.0.3
Paloaltonetworks Pan Os	Version 8.0.4
Paloaltonetworks Pan Os	Version 8.0.5
Paloaltonetworks Pan Os	Version 8.0.6