CVE-2019-1580

Published: Aug 23, 2019Modified: Nov 21, 2024

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Memory corruption in PAN-OS 7.1.24 and earlier, PAN-OS 8.0.19 and earlier, PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier will allow a remote, unauthenticated user to craft a message to Secure Shell Daemon (SSHD) and corrupt arbitrary memory.

Affected (4)

Products: Paloaltonetworks: Pan Os

Paloaltonetworks

1 product

Pan Os

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Paloaltonetworks Pan Os	Up to 7.1.24
Paloaltonetworks Pan Os	From 8.0.0 to 8.0.19
Paloaltonetworks Pan Os	From 8.1.0 to 8.1.9
Paloaltonetworks Pan Os	From 9.0.0 to 9.0.3

Related CWEs

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

https://security.paloaltonetworks.com/CVE-2019-1580

Source: psirt@paloaltonetworks.com

https://security.paloaltonetworks.com/CVE-2019-1580

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.