Palo Alto Networks Security Advisories / CVE-2021-3156

CVE-2021-3156 Informational: Impact of Sudo Vulnerability CVE-2021-3156


047910
Severity 0 · NONE
Attack Vector Not applicable
Scope Not applicable
Attack Complexity Not applicable
Confidentiality Impact NONE
Privileges Required Not applicable
Integrity Impact NONE
User Interaction Not applicable
Availability Impact NONE
NVD JSON
Published 2021-02-10
Updated 2021-12-01
Reference
Discovered externally

Description

Palo Alto Networks Product Security Assurance team has evaluated the Sudo software vulnerability CVE-2021-3156.

PAN-OS software, Prisma Cloud compute, and Prisma SD-WAN (CloudGenix) devices do not include the Sudo program and, therefore, no scenarios required for successful exploitation exist in these Palo Alto Networks products.

CVECVSSSummary
CVE-2021-31567.8 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)Conditions required for exploiting this vulnerability do not exist in PAN-OS software, Prisma Cloud compute, or Prisma SD-WAN (CloudGenix) software.

Product Status

VersionsAffectedUnaffected
PAN-OS NoneAll
Prisma Cloud Compute NoneAll
Prisma SD-WAN (CloudGenix) NoneAll

Severity: NONE

CVSSv3.1 Base Score: 0 (CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N)

Solution

No product updates are required for this vulnerability.

Timeline

Fix a typo in Prisma Cloud Compute name.
Initial publication
Terms of usePrivacyProduct Security Assurance and Vulnerability Disclosure PolicyReport vulnerabilitiesManage subscriptions
© 2024 Palo Alto Networks, Inc. All rights reserved.