Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-3764

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-3764
Last Modified 06 Jan 2015 01:25:44
Published 06 Jan 2015 10:59:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-3764

Summary

Cross-site scripting (XSS) vulnerability in the web-based device management interface in Palo Alto Networks PAN-OS before 5.0.15, 5.1.x before 5.1.10, and 6.0.x before 6.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Ref ID 64563.

Vulnerable Systems

Operating System

  • Paloaltonetworks Pan-os 5.0.14

  • Paloaltonetworks Pan-os 5.1

  • Paloaltonetworks Pan-os 5.1.1

  • Paloaltonetworks Pan-os 5.1.2

  • Paloaltonetworks Pan-os 5.1.3

  • Paloaltonetworks Pan-os 5.1.4

  • Paloaltonetworks Pan-os 5.1.5

  • Paloaltonetworks Pan-os 5.1.6

  • Paloaltonetworks Pan-os 5.1.7

  • Paloaltonetworks Pan-os 5.1.8

  • Paloaltonetworks Pan-os 5.1.9

  • Paloaltonetworks Pan-os 6.0

  • Paloaltonetworks Pan-os 6.0.1

  • Paloaltonetworks Pan-os 6.0.2

  • Paloaltonetworks Pan-os 6.0.3

  • Paloaltonetworks Pan-os 6.0.4

  • Paloaltonetworks Pan-os 6.0.5


References

CONFIRM - http://securityadvisories.paloaltonetworks.com/Home/Detail/27

SECUNIA - 61811


Last Updated: 27 May 2016 10:52:01