Palo Alto Networks PAN-OS 5.0.x < 5.0.19 / 5.1.x < 5.1.12 / 6.0.x < 6.0.14 / 6.1.x < 6.1.12 / 7.0.x < 7.0.8 Privilege Escalation (PAN-SA-2016-0012)
High Nessus Plugin ID 93125
SynopsisThe remote host is affected by multiple vulnerabilities.
DescriptionThe version of Palo Alto Networks PAN-OS running on the remote host is 5.0.x prior to 5.0.19, 5.1.x prior to 5.1.12, 6.0.x prior to 6.0.14, 6.1.x prior to 6.1.12, or 7.0.x prior to 7.0.8. It is, therefore, affected by a privilege escalation vulnerability due to improper sanitization of the root_reboot local invocation. A local attacker can exploit this to gain elevated privileges.
SolutionUpgrade to Palo Alto Networks PAN-OS version 5.0.19 / 5.1.12 / 6.0.14 / 6.1.12 / 7.0.8 or later.