What is the severity of CVE-2017-8390?

The severity of CVE-2017-8390 is classified as high due to its potential to allow remote code execution.

How do I fix CVE-2017-8390?

To fix CVE-2017-8390, you should upgrade your Palo Alto Networks PAN-OS to the latest version available that is not vulnerable.

Which versions of PAN-OS are affected by CVE-2017-8390?

CVE-2017-8390 affects PAN-OS versions prior to 6.1.18, and 7.x prior to 7.0.16, 7.1.x prior to 7.1.11, and 8.x prior to 8.0.3.

What type of attack does CVE-2017-8390 facilitate?

CVE-2017-8390 facilitates remote code execution attacks via specially crafted domain names.

Is a patch available for CVE-2017-8390?

Yes, a patch is available in newer versions of PAN-OS that address the vulnerability described in CVE-2017-8390.

Vulnerability/
CVE-2017-8390

critical

CWE

2/8/2017

5/8/2024

CVE-2017-8390: Input Validation

First published: Wed Aug 02 2017(Updated: )

The DNS Proxy in Palo Alto Networks PAN-OS before 6.1.18, 7.x before 7.0.16, 7.1.x before 7.1.11, and 8.x before 8.0.3 allows remote attackers to execute arbitrary code via a crafted domain name.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Palo Alto Networks PAN-OS	<=6.1.17
Palo Alto Networks PAN-OS	=7.0.1
Palo Alto Networks PAN-OS	=7.0.2
Palo Alto Networks PAN-OS	=7.0.3
Palo Alto Networks PAN-OS	=7.0.4
Palo Alto Networks PAN-OS	=7.0.5
Palo Alto Networks PAN-OS	=7.0.6
Palo Alto Networks PAN-OS	=7.0.7
Palo Alto Networks PAN-OS	=7.0.8
Palo Alto Networks PAN-OS	=7.0.9
Palo Alto Networks PAN-OS	=7.0.10
Palo Alto Networks PAN-OS	=7.0.11
Palo Alto Networks PAN-OS	=7.0.12
Palo Alto Networks PAN-OS	=7.0.13
Palo Alto Networks PAN-OS	=7.0.14
Palo Alto Networks PAN-OS	=7.0.15
Palo Alto Networks PAN-OS	=7.1.0
Palo Alto Networks PAN-OS	=7.1.1
Palo Alto Networks PAN-OS	=7.1.2
Palo Alto Networks PAN-OS	=7.1.3
Palo Alto Networks PAN-OS	=7.1.4
Palo Alto Networks PAN-OS	=7.1.4-h2
Palo Alto Networks PAN-OS	=7.1.6
Palo Alto Networks PAN-OS	=7.1.7
Palo Alto Networks PAN-OS	=7.1.8
Palo Alto Networks PAN-OS	=7.1.9
Palo Alto Networks PAN-OS	=7.1.9-h2
Palo Alto Networks PAN-OS	=7.1.10
Palo Alto Networks PAN-OS	=8.0.0
Palo Alto Networks PAN-OS	=8.0.1
Palo Alto Networks PAN-OS	=8.0.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-8390?
The severity of CVE-2017-8390 is classified as high due to its potential to allow remote code execution.
How do I fix CVE-2017-8390?
To fix CVE-2017-8390, you should upgrade your Palo Alto Networks PAN-OS to the latest version available that is not vulnerable.
Which versions of PAN-OS are affected by CVE-2017-8390?
CVE-2017-8390 affects PAN-OS versions prior to 6.1.18, and 7.x prior to 7.0.16, 7.1.x prior to 7.1.11, and 8.x prior to 8.0.3.
What type of attack does CVE-2017-8390 facilitate?
CVE-2017-8390 facilitates remote code execution attacks via specially crafted domain names.
Is a patch available for CVE-2017-8390?
Yes, a patch is available in newer versions of PAN-OS that address the vulnerability described in CVE-2017-8390.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/author
agent/references
agent/last-modified-date
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/paloaltonetworks
canonical/palo alto networks pan-os
version/palo alto networks pan-os/6.1.17
version/palo alto networks pan-os/7.0.1
version/palo alto networks pan-os/7.0.2
version/palo alto networks pan-os/7.0.3
version/palo alto networks pan-os/7.0.4
version/palo alto networks pan-os/7.0.5
version/palo alto networks pan-os/7.0.6
version/palo alto networks pan-os/7.0.7
version/palo alto networks pan-os/7.0.8
version/palo alto networks pan-os/7.0.9
version/palo alto networks pan-os/7.0.10
version/palo alto networks pan-os/7.0.11
version/palo alto networks pan-os/7.0.12
version/palo alto networks pan-os/7.0.13
version/palo alto networks pan-os/7.0.14
version/palo alto networks pan-os/7.0.15
version/palo alto networks pan-os/7.1.0
version/palo alto networks pan-os/7.1.1
version/palo alto networks pan-os/7.1.2
version/palo alto networks pan-os/7.1.3
version/palo alto networks pan-os/7.1.4
version/palo alto networks pan-os/7.1.4-h2
version/palo alto networks pan-os/7.1.6
version/palo alto networks pan-os/7.1.7
version/palo alto networks pan-os/7.1.8
version/palo alto networks pan-os/7.1.9
version/palo alto networks pan-os/7.1.9-h2
version/palo alto networks pan-os/7.1.10
version/palo alto networks pan-os/8.0.0
version/palo alto networks pan-os/8.0.1
version/palo alto networks pan-os/8.0.2