- 185/2022
- High
Palo Alto has released security updates to address a vulnerability in Palo Alto Networks PAN-OS. The remote attacker could exploit this vulnerability to take control of the affected system.
Palo Alto Networks PAN-OS is vulnerable to a denial of service, caused by a misconfiguration flaw in the URL filtering policy. The remote attacker could exploit this vulnerability by sending a specially-crafted request to conduct reflected and amplified TCP denial-of-service (RDoS) attacks.
The mentioned DoS attack would appear to originate from a Palo Alto Networks PASeries (hardware), VM-Series (virtual), and CN-Series (container) firewall against an attacker-specified target.
Palo Alto Networks PAN-OS denial of service (CVE-2022-0028):
- CVSS: 8.6
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Consequences: Denial of Service
It should be highlighted that Palo Alto is aware of a specifically crafted proof of concept (POC) that reduces the effectiveness of the Cortex XDR agent Anti- Ransomware endpoint protection module. This flaw affected versions earlier than (CU-610) therefore Palo Alto recommends deploying the update to (CU-610) content update and later.
Vulnerabilities
CVE-2022-0028
Mitigations
The enterprise should deploy this patch as soon as the testing phase is completed.
Palo Alto Networks Security Advisories