New Palo Alto Networks Security Advisories.
Palo Alto Networks has published 5 new Security Advisories at https://security.paloaltonetworks.com on June 10, 2020:
PAN-OS
________________________________________
CVE-2020-2027 PAN-OS: Buffer overflow in authd authentication response (Severity: HIGH)
https://security.paloaltonetworks.com/CVE-2020-2027
CVE-2020-2028 PAN-OS: OS command injection vulnerability in FIPS-CC mode certificate verification (Severity: HIGH)
https://security.paloaltonetworks.com/CVE-2020-2028
CVE-2020-2029 PAN-OS: OS command injection vulnerability in management interface certificate generator (Severity: HIGH)
https://security.paloaltonetworks.com/CVE-2020-2029
GlobalProtect App
________________________________________
CVE-2020-2032 GlobalProtect App: File race condition vulnerability leads to local privilege escalation during upgrade (Severity: HIGH)
https://security.paloaltonetworks.com/CVE-2020-2032
CVE-2020-2033 GlobalProtect App: Missing certificate validation vulnerability can disclose pre-logon authentication cookie (Severity: MEDIUM)
https://security.paloaltonetworks.com/CVE-2020-2033
Please visit our Security Advisories website to learn more at https://security.paloaltonetworks.com/.
If you have questions, please contact support https://www.paloaltonetworks.com/company/contact-support.
Regards,
Product Security Incident Response Team
Palo Alto Networks