Traps: Insecure temporary file vulnerability may allow privilege escalation on Windows
CVE-2020-1991

7.8HIGH

Key Information:

Vendor: Palo Alto Networks
Status: Traps; Cortex Xdr
Vendor: CVE Published:; 8 April 2020

Summary

An insecure temporary file vulnerability in Palo Alto Networks Traps allows a local authenticated Windows user to escalate privileges or overwrite system files. This issue affects Palo Alto Networks Traps 5.0 versions before 5.0.8; 6.1 versions before 6.1.4 on Windows. This issue does not affect Cortex XDR 7.0. This issue does not affect Traps for Linux or MacOS.

Affected Version(s)

Cortex XDR 7.0.*

Traps Windows 5.0 < 5.0.8

Traps Windows 6.1 < 6.1.4

References

https://security.paloaltonetworks.com/CVE-2020-1991

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 8, 2020
Vulnerability Reserved
Dec 4, 2019

Credit

Palo Alto Networks thanks Lasse Trolle Borup of Danish Cyber Defence for discovering and reporting this issue.