CVE-2020-2042: Buffer Overflow
First published: Wed Sep 09 2020(Updated: )
A buffer overflow vulnerability in the PAN-OS management web interface allows authenticated administrators to disrupt system processes and potentially execute arbitrary code with root privileges. This issue impacts only PAN-OS 10.0 versions earlier than PAN-OS 10.0.1.
Credit: psirt@paloaltonetworks.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Paloaltonetworks Pan-os | >=10.0.0<10.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-2042?
CVE-2020-2042 is a buffer overflow vulnerability in the PAN-OS management web interface that allows authenticated administrators to disrupt system processes and potentially execute arbitrary code with root privileges.
How severe is CVE-2020-2042?
CVE-2020-2042 has a severity rating of 7.2, which is considered critical.
Which software versions are affected by CVE-2020-2042?
CVE-2020-2042 affects PAN-OS 10.0 versions earlier than PAN-OS 10.0.1.
How can the buffer overflow vulnerability in CVE-2020-2042 be exploited?
Authenticated administrators can exploit the buffer overflow vulnerability in CVE-2020-2042 through the PAN-OS management web interface to disrupt system processes and potentially execute arbitrary code with root privileges.
Is there a fix available for CVE-2020-2042?
Yes, a fix is available for CVE-2020-2042. Upgrade to PAN-OS 10.0.1 or later to mitigate this vulnerability.
- collector/nvd-index
- agent/weakness
- agent/tags
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- vendor/paloaltonetworks
- canonical/paloaltonetworks pan-os
- version/paloaltonetworks pan-os/10.0.0