Vulnerability Description
The PAN-OS Management Web Interface in Palo Alto Networks PAN-OS 8.1.2 and earlier may allow an authenticated user to shut down all management sessions, resulting in all logged in users to be redirected to the login page. PAN-OS 6.1, PAN-OS 7.1 and PAN-OS 8.0 are NOT affected.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Paloaltonetworks | Pan-Os | >= 8.1.0, <= 8.1.2 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/105107Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041545Third Party AdvisoryVDB Entry
- https://security.paloaltonetworks.com/CVE-2018-10140
- http://www.securityfocus.com/bid/105107Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041545Third Party AdvisoryVDB Entry
- https://security.paloaltonetworks.com/CVE-2018-10140
FAQ
What is CVE-2018-10140?
CVE-2018-10140 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The PAN-OS Management Web Interface in Palo Alto Networks PAN-OS 8.1.2 and earlier may allow an authenticated user to shut down all management sessions, resulting in all logged in users to be redirect...
How severe is CVE-2018-10140?
CVE-2018-10140 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-10140?
Check the references section above for vendor advisories and patch information. Affected products include: Paloaltonetworks Pan-Os.