What is the severity of CVE-2021-3033?

CVE-2021-3033 is rated as a high-severity vulnerability due to its potential to allow unauthorized access.

How do I fix CVE-2021-3033?

To fix CVE-2021-3033, upgrade to the latest version of Palo Alto Networks Prisma Cloud Compute that addresses this vulnerability.

Which versions of Prisma Cloud Compute are affected by CVE-2021-3033?

CVE-2021-3033 affects Prisma Cloud Compute versions 19.11, 20.04, 20.09, and 20.12, including their updates.

What can an attacker achieve by exploiting CVE-2021-3033?

By exploiting CVE-2021-3033, an attacker can bypass signature validation during SAML authentication, compromising user accounts.

Are there any workarounds for CVE-2021-3033?

There are no specified workarounds for CVE-2021-3033; updating the software is the recommended action.

Vulnerability/
CVE-2021-3033

critical

9.8

CWE

347

10/2/2021

17/9/2024

CVE-2021-3033: Prisma Cloud Compute: SAML Authentication Bypass Vulnerability in Console

First published: Wed Feb 10 2021(Updated: )

An improper verification of cryptographic signature vulnerability exists in the Palo Alto Networks Prisma Cloud Compute console. This vulnerability enables an attacker to bypass signature validation during SAML authentication by logging in to the Prisma Cloud Compute console as any authorized user. This issue impacts: All versions of Prisma Cloud Compute 19.11, Prisma Cloud Compute 20.04, and Prisma Cloud Compute 20.09; Prisma Cloud Compute 20.12 before update 1. Prisma Cloud Compute SaaS version is not impacted by this vulnerability.

Credit: psirt@paloaltonetworks.com

Affected Software	Affected Version	How to fix
Prisma	=19.11
Prisma	=19.11-update_1
Prisma	=19.11-update_2
Prisma	=20.04
Prisma	=20.04-update_1
Prisma	=20.04-update_2
Prisma	=20.09
Prisma	=20.09-update_1
Prisma	=20.09-update_2
Prisma	=20.12

Remedy

This issue is fixed in Prisma Cloud Compute 20.12 update 1 and all later versions.

Never miss a vulnerability like this again

Reference Links

https://security.paloaltonetworks.com/CVE-2021-3033

Frequently Asked Questions

What is the severity of CVE-2021-3033?
CVE-2021-3033 is rated as a high-severity vulnerability due to its potential to allow unauthorized access.
How do I fix CVE-2021-3033?
To fix CVE-2021-3033, upgrade to the latest version of Palo Alto Networks Prisma Cloud Compute that addresses this vulnerability.
Which versions of Prisma Cloud Compute are affected by CVE-2021-3033?
CVE-2021-3033 affects Prisma Cloud Compute versions 19.11, 20.04, 20.09, and 20.12, including their updates.
What can an attacker achieve by exploiting CVE-2021-3033?
By exploiting CVE-2021-3033, an attacker can bypass signature validation during SAML authentication, compromising user accounts.
Are there any workarounds for CVE-2021-3033?
There are no specified workarounds for CVE-2021-3033; updating the software is the recommended action.

agent/softwarecombine
agent/type
agent/author
agent/title
agent/remedy
agent/weakness
agent/severity
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/paloaltonetworks
canonical/prisma
version/prisma/19.11
version/prisma/19.11-update_1
version/prisma/19.11-update_2
version/prisma/20.04
version/prisma/20.04-update_1
version/prisma/20.04-update_2
version/prisma/20.09
version/prisma/20.09-update_1
version/prisma/20.09-update_2
version/prisma/20.12

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.