ByteOS Network

Vulnerability Details :

CVE-2020-1998

Assigner Org ID-d6c1279f-00f6-4ef7-9217-f89ffe703ec0

Published At-13 May, 2020 | 19:07

Updated At-16 Sep, 2024 | 23:56

PAN-OS: Improper SAML SSO authorization of shared local users

An improper authorization vulnerability in PAN-OS that mistakenly uses the permissions of local linux users instead of the intended SAML permissions of the account when the username is shared for the purposes of SSO authentication. This can result in authentication bypass and unintended resource access for the user. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions earlier than 9.0.6; PAN-OS 9.1 versions earlier than 9.1.1; All versions of PAN-OS 8.0.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:palo_alto

Assigner Org ID:d6c1279f-00f6-4ef7-9217-f89ffe703ec0

Published At:13 May, 2020 | 19:07

Updated At:16 Sep, 2024 | 23:56

▼CVE Numbering Authority (CNA)

PAN-OS: Improper SAML SSO authorization of shared local users

Affected Products

Vendor

Palo Alto Networks, Inc.

Product

PAN-OS

Versions

Affected

8.0.*
From 8.1 before 8.1.13 (custom)
- -> unaffectedfrom8.1.13
From 7.1 before 7.1.26 (custom)
- -> unaffectedfrom7.1.26
From 9.0 before 9.0.6 (custom)
- -> unaffectedfrom9.0.6
From 9.1 before 9.1.1 (custom)
- -> unaffectedfrom9.1.1

Problem Types

Type	CWE ID	Description
CWE	CWE-285	CWE-285 Improper Authorization

Type: CWE

CWE ID: CWE-285

Description: CWE-285 Improper Authorization

Metrics

Version	Base score	Base severity	Vector
3.1	5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Version: 3.1

Base score: 5.4

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Solutions

This issue is fixed in PAN-OS 7.1.26, PAN-OS 8.1.13, PAN-OS 9.0.6, PAN-OS 9.1.1, and all later PAN-OS versions. PAN-OS 8.0 is now end-of-life as of October 31, 2019, and is no longer covered by our Product Security Assurance policies.

Workarounds

The impact of this vulnerability can be mitigated by removing shared usernames between local linux users and SAML enabled users.

Credits

Palo Alto Networks would like to thank Maurice Lok-Hin for discovering and reporting this issue.

Timeline

Event	Date
Initial publication	2020-05-13 00:00:00

Event: Initial publication

Date: 2020-05-13 00:00:00

References

Hyperlink	Resource
https://security.paloaltonetworks.com/CVE-2020-1998	x_refsource_MISC

Hyperlink: https://security.paloaltonetworks.com/CVE-2020-1998

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://security.paloaltonetworks.com/CVE-2020-1998	x_refsource_MISC x_transferred

Hyperlink: https://security.paloaltonetworks.com/CVE-2020-1998

Resource:

x_refsource_MISC

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:psirt@paloaltonetworks.com

Published At:13 May, 2020 | 19:15

Updated At:19 May, 2020 | 16:05

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Secondary	3.1	5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Primary	2.0	6.5	MEDIUM	AV:N/AC:L/Au:S/C:P/I:P/A:P

Type: Primary

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 5.4

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Type: Primary

Version: 2.0

Base score: 6.5

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:S/C:P/I:P/A:P

CPE Matches

Palo Alto Networks, Inc.

>>pan-os>>Versions from 7.1.0(inclusive) to 7.1.26(exclusive)

cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*

Palo Alto Networks, Inc.

>>pan-os>>Versions from 8.0.0(inclusive) to 8.0.20(inclusive)

cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*

Palo Alto Networks, Inc.

>>pan-os>>Versions from 8.1.0(inclusive) to 8.1.13(exclusive)

cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*

Palo Alto Networks, Inc.

>>pan-os>>Versions from 9.0.0(inclusive) to 9.0.6(exclusive)

cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*

Palo Alto Networks, Inc.

>>pan-os>>Versions from 9.1.0(inclusive) to 9.1.1(exclusive)

cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-863	Primary	nvd@nist.gov
CWE-285	Secondary	psirt@paloaltonetworks.com

CWE ID: CWE-863

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-285

Type: Secondary

Source: psirt@paloaltonetworks.com

References

Hyperlink	Source	Resource
https://security.paloaltonetworks.com/CVE-2020-1998	psirt@paloaltonetworks.com	Vendor Advisory

Hyperlink: https://security.paloaltonetworks.com/CVE-2020-1998

Source: psirt@paloaltonetworks.com

Resource:

Vendor Advisory

CVE-2020-1998

Credits

PAN-OS: Improper SAML SSO authorization of shared local users

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs