Cross-Site Scripting Vulnerability in Palo Alto Networks Traps Management Interface
CVE-2015-2223

Currently unrated

Key Information:

Vendor

Palo Alto Networks
Status
Traps
Vendor
CVE Published:
14 April 2015

What is CVE-2015-2223?

Multiple cross-site scripting (XSS) vulnerabilities exist within the web-based console management interface of Palo Alto Networks Traps, allowing remote attackers to inject arbitrary web scripts or HTML. These vulnerabilities can be exploited via injection through the Arguments, FileName, or URL parameters in a SOAP request, potentially compromising the integrity and security of user interactions with the management interface.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/archive/1/535113/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://packetstormsecurity.com/files/131182/Palo-Alto-Tra...
x_refsource_MISC
http://www.securityfocus.com/bid/73704
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.