This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

CVE-2023-48795 Vulnerability

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

CVE-2023-48795 Vulnerability

SyafiqBharudin
L1 Bithead

‎06-10-2025 04:27 AM - edited ‎06-10-2025 04:28 AM

Hi Community,

 

I have my firewall been exposed to CVE-2023-48795 Impact of Terrapin SSH Attack. Currently, based on the Palo Alto Security Advisories, I could see that PAN-OS version that are above than 10.1.15 are unaffected to this CVE. Upon checking my firewall model which is PA-820, I couldn't see any version listed for 10.1.15 in the software updates.

 

I'm not quite sure why it isn't listed for my model. Hope someone can enlighten me regarding this and should I proceed to upgrade to another version chain or proceed with the recommended solutions stated in the Security Advisories?

 

Model: PA-820

Running Version: 10.1.14-h9

0 Likes Likes
2 REPLIES 2

kiwi
Community Team Member

‎06-10-2025 05:19 AM

Hi @SyafiqBharudin ,

 

You have likely checked "Preferred Releases" or "Base Releases" at the bottom of the Software page.
Uncheck and try again.  All available releases should become visible.

 

kiwi_0-1749557938065.png

 

 

Hope this helps,

 

Kind regards,

-Kim.

LIVEcommunity team member, CISSP
Cheers,
Kiwi
Please help out other users and “Accept as Solution” if a post helps solve your problem !

Read more about how and why to accept solutions.
0 Likes Likes

BPry
Cyber Elite
Cyber Elite

‎06-10-2025 02:16 PM

@SyafiqBharudin,

10.1.15 doesn't exist, you can verify by looking at the release notes for PAN-OS 10.1 https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-release-notes/. The latest release is 10.1.14-h14 and PAN didn't actually include any detailed release notes in that version. Short of jumping major versions, you would need to reach out to TAC to get an estimate of 10.1.15 release date or verify whether this was one of the issues addressed in 10.1.14-h14 that they didn't feel like detailing. 

In other releases, and under normal situations, PAN details CVEs pretty extensively when fixes are made to address them. This leads me to believe that the fix actually isn't out yet for 10.1 for some reason. 

0 Likes Likes
  • 224 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks