Palo Alto Networks Security Advisories / PAN-SA-2021-0003

PAN-SA-2021-0003 Informational: Impact of the NAME:WRECK DNS vulnerabilities

047910
Severity 0 · NONE
Attack Vector Not applicable
Scope Not applicable
Attack Complexity Not applicable
Confidentiality Impact NONE
Privileges Required Not applicable
Integrity Impact NONE
User Interaction Not applicable
Availability Impact NONE
JSON
Published 2021-05-10
Updated 2021-05-12
Reference PAN-169343 and PAN-169120
Discovered externally

Description

The Palo Alto Networks Product Security Assurance team evaluated the NAME:WRECK DNS vulnerabilities impacting multiple TCP/IP software stack implementations.

PAN-OS software and Prisma SD-WAN (CloudGenix) devices do not utilize the IPNet, Nucleus NET, FreeBSD, or NetX TCP/IP software stacks related to these vulnerabilities. As a result, there is no known security impact for these vulnerabilities in PAN-OS software or Prisma SD-WAN (CloudGenix) devices.

Product Status

VersionsAffectedUnaffected
PAN-OS Noneall
Prisma SD-WAN (CloudGenix) Noneall

Severity:NONE

CVSSv3.1 Base Score:0 (CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N)

Solution

No product updates are required for these issues.

Timeline

Updated description for clarity
Initial publication
Terms of usePrivacyProduct Security Assurance and Vulnerability Disclosure Policy Report vulnerabilitiesManage subscriptions
© 2023 Palo Alto Networks, Inc. All rights reserved.