https://live.paloaltonetworks.com/t5/general-topics/vulneability-sql-injection/m-p/178959#M55613 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/44123">@SachinDahale</a>,</P><P>So I just scanned this on one of my firewalls utilizing Nessus Professional and did not locate the listed vulnerability on 8.0.4; so it would appear that Palo Alto has fixed this in later releases, although I'm not positive what version specifically. I would try updating your box to the 7.1.11 or 7.1.12 release and rescanning, if still present then it must be a fix within the 8.0.* line.&nbsp;</P> Wed, 27 Sep 2017 13:52:08 GMT BPry 2017-09-27T13:52:08Z https://live.paloaltonetworks.com/t5/general-topics/vulneability-sql-injection/m-p/178926#M55607 <P>Hi,</P><P>&nbsp;</P><P>we have done some Vulnerability assessment on firewall with PAN-OS version 7.1.8 version. And found below vulnerability for which we are not able to find CVE or solution. Help me to find a solution for below:</P><P>&nbsp;</P><P>Vulnerability : CGI Generic SQL Injection (blind) - 443/tcp<BR />Synopsis :<BR />A CGI application hosted on the web server running on this host is potentially prone to SQL injection attack.</P><P>Description :<BR />By sending specially crafted parameters to one or more CGI scripts hosted on the web server<BR />running on this host, Nessus was able to get very different response, which suggests that it may have been<BR />able to modify the behaviour of the application and directly access the underlying database.<BR />An attacker may be able to exploit this issue to bypass authentication,read confidential data, modify the remote database,<BR />or even take control of the operating system.<BR />Note that this script is experimental and may be prone to false positives.</P><P>Solution :<BR />Modify the affected CGI scripts so that they properly escape arguments.</P><P>&nbsp;</P><P>regards,</P><P>Sachin</P> Wed, 27 Sep 2017 10:43:14 GMT https://live.paloaltonetworks.com/t5/general-topics/vulneability-sql-injection/m-p/178926#M55607 SachinDahale 2017-09-27T10:43:14Z https://live.paloaltonetworks.com/t5/general-topics/vulneability-sql-injection/m-p/178959#M55613 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/44123">@SachinDahale</a>,</P><P>So I just scanned this on one of my firewalls utilizing Nessus Professional and did not locate the listed vulnerability on 8.0.4; so it would appear that Palo Alto has fixed this in later releases, although I'm not positive what version specifically. I would try updating your box to the 7.1.11 or 7.1.12 release and rescanning, if still present then it must be a fix within the 8.0.* line.&nbsp;</P> Wed, 27 Sep 2017 13:52:08 GMT https://live.paloaltonetworks.com/t5/general-topics/vulneability-sql-injection/m-p/178959#M55613 BPry 2017-09-27T13:52:08Z https://live.paloaltonetworks.com/t5/general-topics/vulneability-sql-injection/m-p/179144#M55641 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/43480">@BPry</a>,</P><P>&nbsp;</P><P>Thanks for quick reply.&nbsp;I will be awaiting your update on 7.1.11 PANOS version about this vulnerability.</P><P><span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P><P>&nbsp;</P><P>Regards,</P><P>Sachin</P> Thu, 28 Sep 2017 10:26:16 GMT https://live.paloaltonetworks.com/t5/general-topics/vulneability-sql-injection/m-p/179144#M55641 SachinDahale 2017-09-28T10:26:16Z