CVE-2012-6591

PAN-OS < 3.1.10 and 4.0.x < 4.0.5 - Authenticated OS Command Injection

Title source: llm

Description

The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote authenticated administrators to execute arbitrary commands via unspecified vectors, aka Ref ID 31116.

References (1)

Core 1

Core References

Various Sources x_refsource_confirm

https://security.paloaltonetworks.com/CVE-2012-6591

Scores

EPSS 0.0071

EPSS Percentile 72.5%

Details

CWE

CWE-78

Status published

Products (6)

paloaltonetworks/pan-os 4.0.0

paloaltonetworks/pan-os 4.0.1

paloaltonetworks/pan-os 4.0.2

paloaltonetworks/pan-os 4.0.3

paloaltonetworks/pan-os 4.0.4

paloaltonetworks/pan-os < 3.1.9

Published Aug 31, 2013

Tracked Since Feb 18, 2026