Description
A buffer overflow vulnerability in the PAN-OS management web interface allows authenticated administrators to disrupt system processes and potentially execute arbitrary code with root privileges. This issue impacts only PAN-OS 10.0 versions earlier than PAN-OS 10.0.1.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://security.paloaltonetworks.com/CVE-2020-2042
Scores
CVSS v3
7.2
EPSS
0.0178
EPSS Percentile
82.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-121
CWE-120
Status
published
Products (1)
paloaltonetworks/pan-os
10.0.0 - 10.0.1
Published
Sep 09, 2020
Tracked Since
Feb 18, 2026