CVE-2017-5584

Cross-site scripting (XSS) vulnerability in the Management Web Interface in Palo Alto Networks PAN-OS 5.1, 6.x before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:paloaltonetworks:pan-os:5.1:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.1:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.2:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.3:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.4:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.5:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.6:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.7:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.8:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.9:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.10:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.11:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.0.12:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.0:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.1:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.2:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.3:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.4:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.5:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.6:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.7:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.8:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.9:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.10:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.11:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.12:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.13:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.14:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:6.1.15:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.1:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.2:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.3:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.4:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.5:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.5-h2:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.6:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.7:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.8:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.9:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.10:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.11:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.0.12:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.0:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.1:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.2:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.3:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.4:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.4-h2:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.5:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.6:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:7.1.7:*:*:*:*:*:*:*

History

21 Nov 2024, 03:27

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/96371 - () http://www.securityfocus.com/bid/96371 -
References () http://www.securitytracker.com/id/1037889 - Third Party Advisory, VDB Entry () http://www.securitytracker.com/id/1037889 - Third Party Advisory, VDB Entry
References () https://security.paloaltonetworks.com/CVE-2017-5584 - () https://security.paloaltonetworks.com/CVE-2017-5584 -

Information

Published : 2017-03-15 14:59

Updated : 2024-11-21 03:27


NVD link : CVE-2017-5584

Mitre link : CVE-2017-5584

CVE.ORG link : CVE-2017-5584


JSON object : View

Products Affected

paloaltonetworks

  • pan-os
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')