PAN-OS: Denial-of-Service (DoS) Vulnerability in DNS Proxy

CVE-2022-0023

5.9MEDIUM

Key Information

Vendor: Palo Alto Networks
Status: Pan-os; Prisma Access
Vendor: CVE Published:; 13 April 2022

Badges

👾 Exploit Exists

Summary

An improper handling of exceptional conditions vulnerability exists in the DNS proxy feature of Palo Alto Networks PAN-OS software that enables a meddler-in-the-middle (MITM) to send specifically crafted traffic to the firewall that causes the service to restart unexpectedly. Repeated attempts to send this request result in denial-of-service to all PAN-OS services by restarting the device in maintenance mode. This issue does not impact Panorama appliances and Prisma Access customers. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.22; PAN-OS 9.0 versions earlier than PAN-OS 9.0.16; PAN-OS 9.1 versions earlier than PAN-OS 9.1.13; PAN-OS 10.0 versions earlier than PAN-OS 10.0.10; PAN-OS 10.1 versions earlier than PAN-OS 10.1.5. This issue does not impact PAN-OS 10.2.

Affected Version(s)

PAN-OS >= 10.2.*

PAN-OS < 8.1.22

PAN-OS < 9.1.13

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit exists.
Sep 16, 2024
Initial publication
Apr 13, 2022
Vulnerability published.
Apr 13, 2022
Vulnerability Reserved.
Dec 28, 2021

Collectors

NVD DatabaseMitre Database

Credit

This issue was found by Nicholas Newsom of Palo Alto Networks during internal security review.