CVE-2012-6602

Palo Alto Networks PAN-OS < 3.1.10 and 4.0.x < 4.0.4 - Authenticated OS Command Injection

Title source: llm

Description

The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.4 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Ref ID 30122.

References (1)

Core 1

Core References

Various Sources x_refsource_confirm

https://security.paloaltonetworks.com/CVE-2012-6602

Scores

EPSS 0.0071

EPSS Percentile 72.5%

Details

CWE

CWE-78

Status published

Products (5)

paloaltonetworks/pan-os 4.0.0

paloaltonetworks/pan-os 4.0.1

paloaltonetworks/pan-os 4.0.2

paloaltonetworks/pan-os 4.0.3

paloaltonetworks/pan-os < 3.1.9

Published Aug 31, 2013

Tracked Since Feb 18, 2026