Palo Alto Networks PAN-OS 6.1.x < 6.1.11 Multiple Vulnerabilities
Medium Nessus Plugin ID 91969
SynopsisThe remote host is affected by multiple vulnerabilities.
DescriptionThe version of Palo Alto Networks PAN-OS running on the remote host is 6.1.x < 6.1.11. It is, therefore, affected by multiple vulnerabilities :
- An unspecified flaw exists that allows an authenticated, remote attacker to access potentially sensitive information in the system logs. (VulnDB 139991)
- A security bypass vulnerability exists in the XML API that allows an authenticated, remote attacker with superuser read-only permissions to bypass intended restrictions and perform a commit. (VulnDB 139995)
SolutionUpgrade to Palo Alto Networks PAN-OS version 6.1.11 or later.