What is the severity of CVE-2017-7945?

CVE-2017-7945 has been rated as a medium severity vulnerability.

How do I fix CVE-2017-7945?

To fix CVE-2017-7945, upgrade your Palo Alto Networks PAN-OS to version 6.1.17, 7.0.15, 7.1.9, or 8.0.2 or later.

What causes CVE-2017-7945?

CVE-2017-7945 is caused by the GlobalProtect external interface providing different error messages for failed login attempts based on username existence.

Which versions of PAN-OS are affected by CVE-2017-7945?

CVE-2017-7945 affects PAN-OS versions prior to 6.1.17, all versions of 7.x before 7.0.15, 7.1.x before 7.1.9, and 8.x before 8.0.2.

Can CVE-2017-7945 be exploited for account enumeration?

Yes, CVE-2017-7945 can be exploited by attackers to enumerate valid account usernames based on different error messages.

Vulnerability/
CVE-2017-7945

critical

9.8

CWE

209

29/4/2017

5/8/2024

CVE-2017-7945

First published: Sat Apr 29 2017(Updated: )

The GlobalProtect external interface in Palo Alto Networks PAN-OS before 6.1.17, 7.x before 7.0.15, 7.1.x before 7.1.9, and 8.x before 8.0.2 provides different error messages for failed login attempts depending on whether the username exists, which allows remote attackers to enumerate account names and conduct brute-force attacks via a series of requests, aka PAN-SA-2017-0014 and PAN-72769.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Palo Alto Networks PAN-OS	<=6.1.15
Palo Alto Networks PAN-OS	=7.0.0
Palo Alto Networks PAN-OS	=7.0.1
Palo Alto Networks PAN-OS	=7.0.2
Palo Alto Networks PAN-OS	=7.0.3
Palo Alto Networks PAN-OS	=7.0.4
Palo Alto Networks PAN-OS	=7.0.5
Palo Alto Networks PAN-OS	=7.0.5-h2
Palo Alto Networks PAN-OS	=7.0.6
Palo Alto Networks PAN-OS	=7.0.7
Palo Alto Networks PAN-OS	=7.0.8
Palo Alto Networks PAN-OS	=7.0.9
Palo Alto Networks PAN-OS	=7.0.10
Palo Alto Networks PAN-OS	=7.0.11
Palo Alto Networks PAN-OS	=7.0.12
Palo Alto Networks PAN-OS	=7.0.13
Palo Alto Networks PAN-OS	=7.0.14
Palo Alto Networks PAN-OS	=7.1.0
Palo Alto Networks PAN-OS	=7.1.1
Palo Alto Networks PAN-OS	=7.1.2
Palo Alto Networks PAN-OS	=7.1.3
Palo Alto Networks PAN-OS	=7.1.4
Palo Alto Networks PAN-OS	=7.1.4-h2
Palo Alto Networks PAN-OS	=7.1.5
Palo Alto Networks PAN-OS	=7.1.6
Palo Alto Networks PAN-OS	=7.1.7
Palo Alto Networks PAN-OS	=7.1.8
Palo Alto Networks PAN-OS	=8.0.0
Palo Alto Networks PAN-OS	=8.0.1

Never miss a vulnerability like this again

Reference Links

https://security.paloaltonetworks.com/CVE-2017-7945

Frequently Asked Questions

What is the severity of CVE-2017-7945?
CVE-2017-7945 has been rated as a medium severity vulnerability.
How do I fix CVE-2017-7945?
To fix CVE-2017-7945, upgrade your Palo Alto Networks PAN-OS to version 6.1.17, 7.0.15, 7.1.9, or 8.0.2 or later.
What causes CVE-2017-7945?
CVE-2017-7945 is caused by the GlobalProtect external interface providing different error messages for failed login attempts based on username existence.
Which versions of PAN-OS are affected by CVE-2017-7945?
CVE-2017-7945 affects PAN-OS versions prior to 6.1.17, all versions of 7.x before 7.0.15, 7.1.x before 7.1.9, and 8.x before 8.0.2.
Can CVE-2017-7945 be exploited for account enumeration?
Yes, CVE-2017-7945 can be exploited by attackers to enumerate valid account usernames based on different error messages.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/weakness
agent/references
agent/severity
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/paloaltonetworks
canonical/palo alto networks pan-os
version/palo alto networks pan-os/6.1.15
version/palo alto networks pan-os/7.0.0
version/palo alto networks pan-os/7.0.1
version/palo alto networks pan-os/7.0.2
version/palo alto networks pan-os/7.0.3
version/palo alto networks pan-os/7.0.4
version/palo alto networks pan-os/7.0.5
version/palo alto networks pan-os/7.0.5-h2
version/palo alto networks pan-os/7.0.6
version/palo alto networks pan-os/7.0.7
version/palo alto networks pan-os/7.0.8
version/palo alto networks pan-os/7.0.9
version/palo alto networks pan-os/7.0.10
version/palo alto networks pan-os/7.0.11
version/palo alto networks pan-os/7.0.12
version/palo alto networks pan-os/7.0.13
version/palo alto networks pan-os/7.0.14
version/palo alto networks pan-os/7.1.0
version/palo alto networks pan-os/7.1.1
version/palo alto networks pan-os/7.1.2
version/palo alto networks pan-os/7.1.3
version/palo alto networks pan-os/7.1.4
version/palo alto networks pan-os/7.1.4-h2
version/palo alto networks pan-os/7.1.5
version/palo alto networks pan-os/7.1.6
version/palo alto networks pan-os/7.1.7
version/palo alto networks pan-os/7.1.8
version/palo alto networks pan-os/8.0.0
version/palo alto networks pan-os/8.0.1

Frequently Asked Questions

What is the severity of CVE-2017-7945?
CVE-2017-7945 has been rated as a medium severity vulnerability.
How do I fix CVE-2017-7945?
To fix CVE-2017-7945, upgrade your Palo Alto Networks PAN-OS to version 6.1.17, 7.0.15, 7.1.9, or 8.0.2 or later.
What causes CVE-2017-7945?
CVE-2017-7945 is caused by the GlobalProtect external interface providing different error messages for failed login attempts based on username existence.
Which versions of PAN-OS are affected by CVE-2017-7945?
CVE-2017-7945 affects PAN-OS versions prior to 6.1.17, all versions of 7.x before 7.0.15, 7.1.x before 7.1.9, and 8.x before 8.0.2.
Can CVE-2017-7945 be exploited for account enumeration?
Yes, CVE-2017-7945 can be exploited by attackers to enumerate valid account usernames based on different error messages.

CVE-2017-7945

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-7945?

How do I fix CVE-2017-7945?

What causes CVE-2017-7945?

Which versions of PAN-OS are affected by CVE-2017-7945?

Can CVE-2017-7945 be exploited for account enumeration?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2017-7945?

How do I fix CVE-2017-7945?

What causes CVE-2017-7945?

Which versions of PAN-OS are affected by CVE-2017-7945?

Can CVE-2017-7945 be exploited for account enumeration?