Palo Alto Networks Security Advisories / CVE-2023-22809

CVE-2023-22809 Impact of Sudo Vulnerability CVE-2023-22809


047910
Severity 0 · NONE
Attack Vector Not applicable
Scope Not applicable
Attack Complexity Not applicable
Confidentiality Impact NONE
Privileges Required Not applicable
Integrity Impact NONE
User Interaction Not applicable
Availability Impact NONE
CVE JSON
Published 2023-02-08
Updated 2023-02-08
Reference PAN-211996
Discovered externally

Description

The Palo Alto Networks Product Security Assurance team has evaluated the sudo software vulnerability CVE-2023-22809 and has determined that the following Palo Alto Networks products do not expose the sudo program and, therefore, do not offer any scenarios required for successful exploitation of this vulnerability.

CVESummary
CVE-2023-22809Conditions required for exploiting this vulnerability do not exist in Cloud NGFW, PAN-OS, Prisma Access, or Prisma SD-WAN.

Product Status

VersionsAffectedUnaffected
Cloud NGFW NoneAll
PAN-OS NoneAll
Prisma Access NoneAll
Prisma SD-WAN ION NoneAll

Severity: NONE

CVSSv3.1 Base Score: 0 (CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N)

Exploitation Status

Palo Alto Networks is not aware of any malicious exploitation of this issue on any of our products.

Solution

No product updates are required for this vulnerability.

Timeline

Initial publication
Terms of usePrivacyProduct Security Assurance and Vulnerability Disclosure PolicyReport vulnerabilitiesManage subscriptions
© 2024 Palo Alto Networks, Inc. All rights reserved.