An improper authorization vulnerability in PAN-OS that mistakenly uses the permissions of local linux users instead of the intended SAML permissions of the account when the username is shared for the purposes of SSO authentication. This can result in authentication bypass and unintended resource access for the user. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions earlier than 9.0.6; PAN-OS 9.1 versions earlier than 9.1.1; All versions of PAN-OS 8.0.
References
Link | Resource |
---|---|
https://security.paloaltonetworks.com/CVE-2020-1998 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: palo_alto
Published: 2020-05-13T00:00:00
Updated: 2020-05-14T15:40:56
Reserved: 2019-12-04T00:00:00
Link: CVE-2020-1998
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-05-13T19:15:12.800
Modified: 2020-05-19T16:05:31.470
Link: CVE-2020-1998
JSON object: View
Redhat Information
No data.