A server-side request forgery (SSRF) vulnerability in the IKEv2 implementation of Palo Alto Networks PAN-OS® software allows an unauthenticated attacker to cause the firewall to send network requests to unintended destinations or cause a denial of service (DoS) condition.
Panorama, Cloud NGFW and Prisma® Access are not impacted by these vulnerabilities.
The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Pan-os | Paloaltonetworks | * | 10.2.7 (excluding) |
| Pan-os | Paloaltonetworks | 10.2.8 (including) | 10.2.10 (excluding) |
| Pan-os | Paloaltonetworks | 10.2.11 (including) | 10.2.13 (excluding) |
| Pan-os | Paloaltonetworks | 10.2.14 (including) | 10.2.16 (excluding) |
| Pan-os | Paloaltonetworks | 10.2.7 (including) | 10.2.7 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h1 (including) | 10.2.7-h1 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h10 (including) | 10.2.7-h10 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h11 (including) | 10.2.7-h11 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h12 (including) | 10.2.7-h12 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h13 (including) | 10.2.7-h13 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h14 (including) | 10.2.7-h14 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h15 (including) | 10.2.7-h15 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h16 (including) | 10.2.7-h16 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h17 (including) | 10.2.7-h17 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h18 (including) | 10.2.7-h18 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h19 (including) | 10.2.7-h19 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h2 (including) | 10.2.7-h2 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h20 (including) | 10.2.7-h20 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h21 (including) | 10.2.7-h21 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h22 (including) | 10.2.7-h22 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h23 (including) | 10.2.7-h23 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h24 (including) | 10.2.7-h24 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h3 (including) | 10.2.7-h3 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h32 (including) | 10.2.7-h32 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h4 (including) | 10.2.7-h4 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h5 (including) | 10.2.7-h5 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h6 (including) | 10.2.7-h6 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h7 (including) | 10.2.7-h7 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h8 (including) | 10.2.7-h8 (including) |
| Pan-os | Paloaltonetworks | 10.2.7-h9 (including) | 10.2.7-h9 (including) |
| Pan-os | Paloaltonetworks | 10.2.10 (including) | 10.2.10 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h1 (including) | 10.2.10-h1 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h10 (including) | 10.2.10-h10 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h11 (including) | 10.2.10-h11 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h12 (including) | 10.2.10-h12 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h13 (including) | 10.2.10-h13 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h14 (including) | 10.2.10-h14 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h17 (including) | 10.2.10-h17 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h18 (including) | 10.2.10-h18 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h2 (including) | 10.2.10-h2 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h21 (including) | 10.2.10-h21 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h27 (including) | 10.2.10-h27 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h3 (including) | 10.2.10-h3 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h30 (including) | 10.2.10-h30 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h31 (including) | 10.2.10-h31 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h4 (including) | 10.2.10-h4 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h5 (including) | 10.2.10-h5 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h6 (including) | 10.2.10-h6 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h7 (including) | 10.2.10-h7 (including) |
| Pan-os | Paloaltonetworks | 10.2.10-h8 (including) | 10.2.10-h8 (including) |
| Pan-os | Paloaltonetworks | 10.2.13 (including) | 10.2.13 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h1 (including) | 10.2.13-h1 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h10 (including) | 10.2.13-h10 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h15 (including) | 10.2.13-h15 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h16 (including) | 10.2.13-h16 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h18 (including) | 10.2.13-h18 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h2 (including) | 10.2.13-h2 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h3 (including) | 10.2.13-h3 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h4 (including) | 10.2.13-h4 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h5 (including) | 10.2.13-h5 (including) |
| Pan-os | Paloaltonetworks | 10.2.13-h7 (including) | 10.2.13-h7 (including) |
| Pan-os | Paloaltonetworks | 10.2.16 (including) | 10.2.16 (including) |
| Pan-os | Paloaltonetworks | 10.2.16-h1 (including) | 10.2.16-h1 (including) |
| Pan-os | Paloaltonetworks | 10.2.16-h4 (including) | 10.2.16-h4 (including) |
| Pan-os | Paloaltonetworks | 10.2.16-h6 (including) | 10.2.16-h6 (including) |
| Pan-os | Paloaltonetworks | 10.2.17 (including) | 10.2.17 (including) |
| Pan-os | Paloaltonetworks | 10.2.18 (including) | 10.2.18 (including) |
| Pan-os | Paloaltonetworks | 10.2.18-h1 (including) | 10.2.18-h1 (including) |
| Pan-os | Paloaltonetworks | 10.2.18-h5 (including) | 10.2.18-h5 (including) |