CVE-2021-3064

Description from NVD

A memory corruption vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to disrupt system processes and potentially execute arbitrary code with root privileges. The attacker must have network access to the GlobalProtect interface to exploit this issue. This issue impacts PAN-OS 8.1 versions earlier than PAN-OS 8.1.17. Prisma Access customers are not impacted by this issue.

Information Acquisition Date:2021-11-30T16:40Z

CVSS 2.0: 10.0 HIGH CVSS 3.x: 9.8 CRITICAL

Attack Vector (AV)	Network	Adjacent	Local	Physical
Attack Complexity (AC)	LOW	High
Privileges Required (PR)	None	Low	High
User Interaction (UI)	None	Required
Scope (S)	Unchange	Change
Confidentiality (C)	None	Low	High
Integrity (I)	None	Low	High
Availability (A)	None	Low	High

Attack Vector (AV)	Network	Adjacent	Local
Access Complexity (AC)	Low	Medium	High
Authentication (Au)	None	Single	Multiple
Confidentiality (C)	None	Partial	Complete
Integrity (I)	None	Partial	Complete
Availability (A)	None	Partial	Complete

NVD References

N/A
source:CONFIRM
tags:Vendor Advisory

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE Infomation	Exploits or more Infomation
mitre	EXPLOIT DATABASE
NVD	0day.today
vulmon.com	github
CVE Details	Twitter
JVN ENG JPN
Reconshell

CVE Infomation

Exploits or more Infomation

JVN ENG JPN

URL	Num of Times Referred to
https://thehackernews.com/2021/11/palo-alto-warns-of-zero-d...	7
https://bit.ly/32eKXMY	6
https://medium.com	5
https://securityaffairs.co/wordpress/124481/hacking/palo-al...	5
https://blog.google/threat-analysis-group/analyzing-waterin...	4
https://twitter.com/RandoriAttack/status/1458480272828162056	4
https://threatpost.com/massive-zero-day-hole-found-in-palo-...	4
https://www.jpcert.or.jp/newsflash/2021111201.html	4
https://www.helpnetsecurity.com/2021/11/12/cve-2021-3064/?u...	4
https://www.randori.com/blog/cve-2021-3064	3
https://blog.macnica.net/blog/2021/11/palo-alto-networkspan...	3
https://www.secuavail.com/kb/nw-device/palo-alto-networks-c...	3
http://feedproxy.google.com/~r/HelpNetSecurity/~3/N05uEZdbe48/	3
https://securityboulevard.com/2021/11/palo-alto-zero-day-cv...	3
https://security.paloaltonetworks.com/CVE-2021-3064	3

URL

Num of Times Referred to

https://thehackernews.com/2021/11/palo-alto-warns-of-zero-d...

https://bit.ly/32eKXMY

https://medium.com

https://securityaffairs.co/wordpress/124481/hacking/palo-al...

https://blog.google/threat-analysis-group/analyzing-waterin...

https://twitter.com/RandoriAttack/status/1458480272828162056

https://threatpost.com/massive-zero-day-hole-found-in-palo-...

https://www.jpcert.or.jp/newsflash/2021111201.html

https://www.helpnetsecurity.com/2021/11/12/cve-2021-3064/?u...

https://www.randori.com/blog/cve-2021-3064

https://blog.macnica.net/blog/2021/11/palo-alto-networkspan...

https://www.secuavail.com/kb/nw-device/palo-alto-networks-c...

http://feedproxy.google.com/~r/HelpNetSecurity/~3/N05uEZdbe48/

https://securityboulevard.com/2021/11/palo-alto-zero-day-cv...

https://security.paloaltonetworks.com/CVE-2021-3064

User	URL	Info Source	Date
InsiderPhD	https://twitter.com/InsiderPhD/status/1625043846638841859/p...	Source InsiderPhD 1625043846638841859	2023/02/13

User

URL

Info Source

Date

InsiderPhD

https://twitter.com/InsiderPhD/status/1625043846638841859/p...

Source InsiderPhD 1625043846638841859

2023/02/13

URL	Num of Times Referred to
thehackernews.com	7
bit.ly	6
medium.com	5
securityaffairs.co	5
blog.google	4
twitter.com	4
threatpost.com	4
www.jpcert.or.jp	4
www.helpnetsecurity.com	4
www.randori.com	3
blog.macnica.net	3
www.secuavail.com	3
feedproxy.google.com	3
securityboulevard.com	3
security.paloaltonetworks.com	3

URL

Num of Times Referred to

www.helpnetsecurity.com

www.randori.com