https://live.paloaltonetworks.com/t5/advanced-threat-prevention/palo-alto-firewall-cve-2022-2884/m-p/513299#M1739 <P>Hello,</P> <P>Here is the PAN threat vault.</P> <P><A href="https://threatvault.paloaltonetworks.com/" target="_blank">https://threatvault.paloaltonetworks.com/</A></P> <P>I did a quick search and didnt find it. I bet PAN is working on one.</P> <P>Regards,</P> Mon, 29 Aug 2022 19:31:53 GMT OtakarKlier 2022-08-29T19:31:53Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/palo-alto-firewall-cve-2022-2884/m-p/512927#M1733 <P>Hi,</P> <P>&nbsp;</P> <P>Does anyone know&nbsp;if GitLab Remote Command Execution Vulnerability is covered with Palo Alto AV Signature?</P> <P>Is Palo Alto affected by it?</P> <P>I was not able to find it in their Security Advisories.</P> <P>&nbsp;</P> <P><STRONG><U>Vulnerability Details:</U></STRONG></P> <TABLE> <TBODY> <TR> <TD width="113"> <P>Title</P> </TD> <TD width="483"> <P>GitLab Remote Command Execution Vulnerability</P> </TD> </TR> <TR> <TD width="113"> <P>CVE ID</P> </TD> <TD width="483"> <P>CVE-2022-2884</P> </TD> </TR> <TR> <TD width="113"> <P>CVE Summary</P> </TD> <TD width="483"> <P>GitLab Community Edition and GitLab Enterprise Edition are prone to remote code-execution vulnerabilities via GitHub Import. An attacker can leverage this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial of service conditions.</P> <P>&nbsp;</P> <P>The vulnerability has a CVSS base score of 9.9.</P> </TD> </TR> <TR> <TD width="113"> <P>Link(s)</P> </TD> <TD width="483"> <P><A href="https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fabout.gitlab.com%2Freleases%2F2022%2F08%2F22%2Fcritical-security-release-gitlab-15-3-1-released%2F&amp;data=05%7C01%7Cnetwork_mnt%40ncs.com.sg%7C4778bda1ea2e440cbf5108da863a5daa%7Cca90d8f589634b6ebca99ac468bcc7a8%7C1%7C0%7C637969882495081472%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&amp;sdata=CGQkf4kOR%2BA5%2F2kEurFnGO83zFra1vFvWAHiegBosgE%3D&amp;reserved=0" target="_blank">https://about.gitlab.com/releases/2022/08/22/critical-security-release-gitlab-15-3-1-released/</A></P> </TD> </TR> </TBODY> </TABLE><BR /><BR />Please note you are posting a public message where community members and experts can provide assistance. Sharing private information such as serial numbers or company information is not recommended. Thu, 25 Aug 2022 03:40:51 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/palo-alto-firewall-cve-2022-2884/m-p/512927#M1733 Johnson_Tan 2022-08-25T03:40:51Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/palo-alto-firewall-cve-2022-2884/m-p/513299#M1739 <P>Hello,</P> <P>Here is the PAN threat vault.</P> <P><A href="https://threatvault.paloaltonetworks.com/" target="_blank">https://threatvault.paloaltonetworks.com/</A></P> <P>I did a quick search and didnt find it. I bet PAN is working on one.</P> <P>Regards,</P> Mon, 29 Aug 2022 19:31:53 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/palo-alto-firewall-cve-2022-2884/m-p/513299#M1739 OtakarKlier 2022-08-29T19:31:53Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/palo-alto-firewall-cve-2022-2884/m-p/526429#M1826 <P>A signature was already released. It's a vulnerability protection signature (not an AV signature).<BR /><A href="https://threatvault.paloaltonetworks.com/?query=CVE-2022-2884&amp;type=" target="_blank">https://threatvault.paloaltonetworks.com/?query=CVE-2022-2884&amp;type=</A></P> <P>&nbsp;</P> <P>Palo Alto Networks Firewall is not using GitLab, thus not affected by CVE-2022-2884.</P> Tue, 10 Jan 2023 02:27:27 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/palo-alto-firewall-cve-2022-2884/m-p/526429#M1826 ymiyashita 2023-01-10T02:27:27Z