CVE-2023-48795 Vulnerability

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

CVE-2023-48795 Vulnerability

L1 Bithead

Hi Community,

 

I have my firewall been exposed to CVE-2023-48795 Impact of Terrapin SSH Attack. Currently, based on the Palo Alto Security Advisories, I could see that PAN-OS version that are above than 10.1.15 are unaffected to this CVE. Upon checking my firewall model which is PA-820, I couldn't see any version listed for 10.1.15 in the software updates.

 

I'm not quite sure why it isn't listed for my model. Hope someone can enlighten me regarding this and should I proceed to upgrade to another version chain or proceed with the recommended solutions stated in the Security Advisories?

 

Model: PA-820

Running Version: 10.1.14-h9

2 REPLIES 2

Community Team Member

Hi @SyafiqBharudin ,

 

You have likely checked "Preferred Releases" or "Base Releases" at the bottom of the Software page.
Uncheck and try again.  All available releases should become visible.

 

kiwi_0-1749557938065.png

 

 

Hope this helps,

 

Kind regards,

-Kim.

LIVEcommunity team member, CISSP
Cheers,
Kiwi
Please help out other users and “Accept as Solution” if a post helps solve your problem !

Read more about how and why to accept solutions.

Cyber Elite
Cyber Elite

@SyafiqBharudin,

10.1.15 doesn't exist, you can verify by looking at the release notes for PAN-OS 10.1 https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-release-notes/. The latest release is 10.1.14-h14 and PAN didn't actually include any detailed release notes in that version. Short of jumping major versions, you would need to reach out to TAC to get an estimate of 10.1.15 release date or verify whether this was one of the issues addressed in 10.1.14-h14 that they didn't feel like detailing. 

In other releases, and under normal situations, PAN details CVEs pretty extensively when fixes are made to address them. This leads me to believe that the fix actually isn't out yet for 10.1 for some reason. 

  • 224 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!