Palo Alto Networks has published 3 new and 2 updated Security Advisory addressing several security issue to https://securityadvisories.paloaltonetworks.com/ .
New Security Advisories
PAN-SA-2017-0021 - Vulnerability in the PAN-OS DNS Proxy
- Critical Severity
- Fixed in PAN-OS 6.1.18, PAN-OS 7.0.16, PAN-OS 7.1.10, PAN-OS 8.0.3
- Affects DNS Proxy of PAN-OS
- CVE-2017-8390
- FAQ
PAN-SA-2017-0020 - Cross-Site Scripting in PAN-OS
- Medium Severity
- Fixed in PAN-OS 6.1.18, PAN-OS 7.0.16, PAN-OS 7.1.11, PAN-OS 8.0.3
- Affects the GlobalProtect external interface of PAN-OS
- CVE-2017-9467
PAN-SA-2017-0019 - Cross-Site Scripting in the Management Web Interface
- Medium Severity
- Fixed in PAN-OS 6.1.18, PAN-OS 7.0.16, PAN-OS 7.1.11, PAN-OS 8.0.3
- Affects the Management Interface of PAN-OS
- CVE-2017-9459
Updated Security Advisories
PAN-SA-2017-0017 - OpenSSL Vulnerability
PAN-SA-2017-0018 - Kernel Vulnerability
Details of the issues, affected versions, and any mitigation information can be found in the Security Advisories.
Please visit our Security Advisories website to learn more at https://securityadvisories.paloaltonetworks.com/
If you have questions, please contact support https://www.paloaltonetworks.com/company/contact-support
Regards
Product Security Incident Response Team
Palo Alto Networks