Print Page - Palo Alto Networks Security Advisory

Title: Palo Alto Networks Security Advisory - April 9, 2019
Post by: icecream-guy on April 10, 2019, 08:09:22 AM

Palo Alto Networks has published a Security Advisory https://securityadvisories.paloaltonetworks.com/.

PAN-SA-2019-0008– Information Disclosure in GlobalProtect Agent
•   Severity = High
•   Fixed in GlobalProtect Agent 4.1.1 for Windows and GlobalProtect Agent 4.1.11 for macOS
•   Affected Versions: GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 for macOS
•   CVE-2019-1573

Details of the issues, affected versions, and any mitigation information can be found in the Security Advisories.  
Please visit our Security Advisories website to learn more at https://securityadvisories.paloaltonetworks.com/  
If you have questions, please contact support https://www.paloaltonetworks.com/company/contact-support  .

Regards ,
Product Security Incident Response Team 
Palo Alto Networks

Title: Re: Palo Alto Networks Security Advisory - April 9, 2019
Post by: deanwebb on April 10, 2019, 09:02:17 AM

Good to know, especially if one uses GlobalProtect...

Title: Re: Palo Alto Networks Security Advisory - April 9, 2019
Post by: icecream-guy on April 15, 2019, 07:12:31 AM

now includes a few other vendors

https://www.kb.cert.org/vuls/id/192371/

- Pulse Secure Connect Secure prior to 8.1R14, 8.2, 8.3R6, and 9.0R2
- Cisco AnyConnect 4.7.x and prior
- F5 fixed it in version 12.1.3 and 13.1.0 and onwards

Networking-Forums.com

Professional Discussions => Vendor Advisories => Topic started by: icecream-guy on April 10, 2019, 08:09:22 AM