CVE-2022-0030
First published: Wed Oct 12 2022(Updated: )
An authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface allows a network-based attacker with specific knowledge of the target firewall or Panorama appliance to impersonate an existing PAN-OS administrator and perform privileged actions.
Credit: psirt@paloaltonetworks.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Paloaltonetworks Pan-os | >=8.1.0<8.1.24 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-0030?
CVE-2022-0030 is an authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface.
How does CVE-2022-0030 affect Palo Alto Networks PAN-OS?
CVE-2022-0030 affects Palo Alto Networks PAN-OS 8.1 versions between 8.1.0 and 8.1.24.
What is the severity of CVE-2022-0030?
CVE-2022-0030 has a severity rating of high (8.1).
How can an attacker exploit CVE-2022-0030?
An attacker with specific knowledge of the target firewall or Panorama appliance can impersonate an existing PAN-OS administrator and perform privileged actions.
Is there a fix available for CVE-2022-0030?
Yes, Palo Alto Networks has released a security advisory with mitigation steps for CVE-2022-0030. Please refer to the official reference for more details.
- collector/nvd-index
- agent/weakness
- vendor/paloaltonetworks
- canonical/paloaltonetworks pan-os
- version/paloaltonetworks pan-os/8.1.0