CVE-2020-1976 - OpenCVE

A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect 5.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:L/AC:L/Au:N/C:N/I:N/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Paloaltonetworks	Globalprotect

Configuration 1 [-]

cpe:2.3:a:paloaltonetworks:globalprotect:*:*:*:*:*:macos:*:*

References

Link	Resource
https://security.paloaltonetworks.com/CVE-2020-1976	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: palo_alto

Published: 2020-02-12T00:00:00

Updated: 2020-02-12T22:57:08

Reserved: 2019-12-04T00:00:00

Link: CVE-2020-1976

JSON object: View

NVD Information

Status : Analyzed

Published: 2020-02-12T23:15:11.500

Modified: 2020-05-04T14:14:08.177

Link: CVE-2020-1976

JSON object: View

Redhat Information

No data.

CWE

{"containers": {"cna": {"affected": [{"platforms": ["Mac OS"], "product": "GlobalProtect", "vendor": "Palo Alto Networks", "versions": [{"changes": [{"at": "5.0.6", "status": "unaffected"}], "lessThanOrEqual": "5.0.5", "status": "affected", "version": "5.0", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "This issue was discovered during a security test performed in collaboration with IOActive."}], "datePublic": "2020-02-12T00:00:00", "descriptions": [{"lang": "en", "value": "A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect 5.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-642", "description": "CWE-642 External Control of Critical State Data", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2020-02-12T22:57:08", "orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "shortName": "palo_alto"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://security.paloaltonetworks.com/CVE-2020-1976"}], "solutions": [{"lang": "en", "value": "This issue is fixed in GlobalProtect 5.0.6, GlobalProtect 5.1.0, and all later versions.\n"}], "source": {"defect": ["GPC-9616"], "discovery": "INTERNAL"}, "title": "GlobalProtect on MacOS: Local denial-of-service (DoS) vulnerability.", "workarounds": [{"lang": "en", "value": "n/a"}], "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@paloaltonetworks.com", "DATE_PUBLIC": "2020-02-12T17:00:00.000Z", "ID": "CVE-2020-1976", "STATE": "PUBLIC", "TITLE": "GlobalProtect on MacOS: Local denial-of-service (DoS) vulnerability."}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "GlobalProtect", "version": {"version_data": [{"platform": "Mac OS", "version_affected": "<=", "version_name": "5.0", "version_value": "5.0.5"}, {"platform": "Mac OS", "version_affected": "!>=", "version_name": "5.0", "version_value": "5.0.6"}]}}]}, "vendor_name": "Palo Alto Networks"}]}}, "credit": [{"lang": "eng", "value": "This issue was discovered during a security test performed in collaboration with IOActive."}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect 5.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-642 External Control of Critical State Data"}]}]}, "references": {"reference_data": [{"name": "https://security.paloaltonetworks.com/CVE-2020-1976", "refsource": "MISC", "url": "https://security.paloaltonetworks.com/CVE-2020-1976"}]}, "solution": [{"lang": "en", "value": "This issue is fixed in GlobalProtect 5.0.6, GlobalProtect 5.1.0, and all later versions.\n"}], "source": {"defect": ["GPC-9616"], "discovery": "INTERNAL"}, "work_around": [{"lang": "en", "value": "n/a"}]}}}, "cveMetadata": {"assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "assignerShortName": "palo_alto", "cveId": "CVE-2020-1976", "datePublished": "2020-02-12T00:00:00", "dateReserved": "2019-12-04T00:00:00", "dateUpdated": "2020-02-12T22:57:08", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:paloaltonetworks:globalprotect:*:*:*:*:*:macos:*:*", "matchCriteriaId": "5FD4E490-E203-44CC-87F7-E1871B1A9A09", "versionEndIncluding": "5.0.5", "versionStartIncluding": "5.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect 5.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS."}, {"lang": "es", "value": "Una vulnerabilidad de denegaci\u00f3n de servicio (DoS) en el software GlobalProtect de Palo Alto Networks ejecut\u00e1ndose en Mac OS permite a usuarios locales autenticados causar la suspensi\u00f3n o bloqueo del kernel de Mac OS. Este problema afecta a GlobalProtect versi\u00f3n 5.0.5 y anteriores de GlobalProtect versi\u00f3n 5.0 en Mac OS."}], "id": "CVE-2020-1976", "lastModified": "2020-05-04T14:14:08.177", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 3.6, "source": "psirt@paloaltonetworks.com", "type": "Secondary"}]}, "published": "2020-02-12T23:15:11.500", "references": [{"source": "psirt@paloaltonetworks.com", "tags": ["Vendor Advisory"], "url": "https://security.paloaltonetworks.com/CVE-2020-1976"}], "sourceIdentifier": "psirt@paloaltonetworks.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-642"}], "source": "psirt@paloaltonetworks.com", "type": "Secondary"}]}