Palo Alto Networks PAN-OS < 4.0.9 / 4.1.x < 4.1.3 Information Disclosure
Medium Nessus Plugin ID 72822
SynopsisThe remote host is affected by an information disclosure vulnerability.
DescriptionThe remote host is running a version of Palo Alto Networks PAN-OS prior to 4.0.9 / 4.1.3. It is, therefore, affected by an information disclosure vulnerability due to LDAP bind passwords being logged in plaintext when using default logging settings.
Note that the 3.1 branch is not affected by this vulnerability.
SolutionUpgrade to PAN-OS version 4.0.9 / 4.1.3 or later.