CVE-2021-3048
MEDIUMPAN-OS 9.0.0-9.0.13 - Denial of Service via Invalid External Dynamic List URL
Title source: llmDescription
Certain invalid URL entries contained in an External Dynamic List (EDL) cause the Device Server daemon (devsrvr) to stop responding. This condition causes subsequent commits on the firewall to fail and prevents administrators from performing commits and configuration changes even though the firewall remains otherwise functional. If the firewall then restarts, it results in a denial-of-service (DoS) condition and the firewall stops processing traffic. This issue impacts: PAN-OS 9.0 versions earlier than PAN-OS 9.0.14; PAN-OS 9.1 versions earlier than PAN-OS 9.1.9; PAN-OS 10.0 versions earlier than PAN-OS 10.0.5. PAN-OS 8.1 and PAN-OS 10.1 versions are not impacted.
References (2)
Core 2
Core References
Broken Link x_refsource_misc
https://security.paloaltonetworks.com/CVE-2020-3048
Vendor Advisory
https://security.paloaltonetworks.com/CVE-2021-3048
Scores
CVSS v3
5.9
EPSS
0.0059
EPSS Percentile
69.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (1)
paloaltonetworks/pan-os
9.0.0 - 9.0.14
Published
Aug 11, 2021
Tracked Since
Feb 18, 2026