Rewterz

Rewterz Threat Alert – BrushaLoader Ransomware Still Sweeping Victims

July 23, 2019
Rewterz

Rewterz Threat Alert – Newly Discovered Malware Framework Cashing in on Ad Fraud

July 23, 2019

Rewterz Threat Advisory – CVE-2019-1579 – Palo Alto PAN-OS code execution vulnerability

Severity

High

Analysis Summary

Palo Alto PAN-OS could allow a remote attacker to execute arbitrary code on the system, caused by an error in its GlobalProtect portal and GlobalProtect Gateway interface products. By sending a specially crafted request to a vulnerable SSL VPN target, an attacker could exploit this vulnerability to execute arbitrary code on the system.

Impact

Code Execution

Privilege access

Affected Vendors

Palo Alto

Affected Products

  • PAN-OS 7.1.18 and earlier
  • PAN-OS 8.0.11 and earlier
  • PAN-OS 8.1.2 and earlier

Remediation

Update to PAN-OS 7.1.19 and later, PAN-OS 8.0.12 and later, and PAN-OS 8.1.3 and later releases.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.