Palo Alto Networks, Aruba Patch Severe Vulnerabilities

13-Oct-22

Both Palo Alto Networks and Aruba Networks have released patches for critical flaws in their products. Customers are warned of a high-severity authentication bypass vulnerability affecting the web interface of Palo Alto Networks’ PAN-OS 8.1 software in an advisory released on October 12 by the company. The vulnerability is identified as CVE-2022-0030.

The company claims that a network-based attacker who is familiar with the targeted firewall or Panorama appliance can assume the identity of an existing PAN-OS admin and carry out privileged operations. Read More…