PAN-SA-2021-0003 Informational: Impact of the NAME:WRECK DNS vulnerabilities
Attack Vector Not applicable
Scope Not applicable
Attack Complexity Not applicable
Confidentiality Impact NONE
Privileges Required Not applicable
Integrity Impact NONE
User Interaction Not applicable
Availability Impact NONE
Description
The Palo Alto Networks Product Security Assurance team evaluated the NAME:WRECK DNS vulnerabilities impacting multiple TCP/IP software stack implementations.
PAN-OS software and Prisma SD-WAN (CloudGenix) devices do not utilize the IPNet, Nucleus NET, FreeBSD, or NetX TCP/IP software stacks related to these vulnerabilities. As a result, there is no known security impact for these vulnerabilities in PAN-OS software or Prisma SD-WAN (CloudGenix) devices.
Product Status
Versions | Affected | Unaffected |
---|---|---|
PAN-OS | None | all |
Prisma SD-WAN (CloudGenix) | None | all |
Severity:NONE
CVSSv3.1 Base Score:0 (CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N)
Solution
No product updates are required for these issues.
Timeline
Updated description for clarity
Initial publication