CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2043

An information exposure through log file vulnerability where sensitive fields are recorded in the configuration log without masking on Palo Alto Networks PAN-OS software when the after-change-detail custom syslog field is enabled for configuration logs and the sensitive field appears multiple times in one log entry. The first instance of the sensitive field is masked but subsequent instances are left in clear text. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.16; PAN-OS 9.0 versions earlier than PAN-OS 9.0.10; PAN-OS 9.1 versions earlier than PAN-OS 9.1.4.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.6%

CVSS Severity

CVSS v3 Score 3.3

CVSS v2 Score 4.0

References

Products affected by CVE-2020-2043

Paloaltonetworks » Pan-Os » Version: 8.1.0

cpe:2.3:o:paloaltonetworks:pan-os:8.1.0
Paloaltonetworks » Pan-Os » Version: 8.1.1

cpe:2.3:o:paloaltonetworks:pan-os:8.1.1
Paloaltonetworks » Pan-Os » Version: 8.1.10

cpe:2.3:o:paloaltonetworks:pan-os:8.1.10
Paloaltonetworks » Pan-Os » Version: 8.1.11

cpe:2.3:o:paloaltonetworks:pan-os:8.1.11
Paloaltonetworks » Pan-Os » Version: 8.1.12

cpe:2.3:o:paloaltonetworks:pan-os:8.1.12
Paloaltonetworks » Pan-Os » Version: 8.1.13

cpe:2.3:o:paloaltonetworks:pan-os:8.1.13
Paloaltonetworks » Pan-Os » Version: 8.1.14

cpe:2.3:o:paloaltonetworks:pan-os:8.1.14
Paloaltonetworks » Pan-Os » Version: 8.1.15

cpe:2.3:o:paloaltonetworks:pan-os:8.1.15
Paloaltonetworks » Pan-Os » Version: 8.1.2

cpe:2.3:o:paloaltonetworks:pan-os:8.1.2
Paloaltonetworks » Pan-Os » Version: 8.1.3

cpe:2.3:o:paloaltonetworks:pan-os:8.1.3
Paloaltonetworks » Pan-Os » Version: 8.1.4

cpe:2.3:o:paloaltonetworks:pan-os:8.1.4
Paloaltonetworks » Pan-Os » Version: 8.1.5

cpe:2.3:o:paloaltonetworks:pan-os:8.1.5
Paloaltonetworks » Pan-Os » Version: 8.1.6

cpe:2.3:o:paloaltonetworks:pan-os:8.1.6
Paloaltonetworks » Pan-Os » Version: 8.1.7

cpe:2.3:o:paloaltonetworks:pan-os:8.1.7
Paloaltonetworks » Pan-Os » Version: 8.1.8

cpe:2.3:o:paloaltonetworks:pan-os:8.1.8
Paloaltonetworks » Pan-Os » Version: 8.1.9

cpe:2.3:o:paloaltonetworks:pan-os:8.1.9
Paloaltonetworks » Pan-Os » Version: 9.0.0

cpe:2.3:o:paloaltonetworks:pan-os:9.0.0
Paloaltonetworks » Pan-Os » Version: 9.0.1

cpe:2.3:o:paloaltonetworks:pan-os:9.0.1
Paloaltonetworks » Pan-Os » Version: 9.0.2

cpe:2.3:o:paloaltonetworks:pan-os:9.0.2
Paloaltonetworks » Pan-Os » Version: 9.0.3

cpe:2.3:o:paloaltonetworks:pan-os:9.0.3
Paloaltonetworks » Pan-Os » Version: 9.0.4

cpe:2.3:o:paloaltonetworks:pan-os:9.0.4
Paloaltonetworks » Pan-Os » Version: 9.0.5

cpe:2.3:o:paloaltonetworks:pan-os:9.0.5
Paloaltonetworks » Pan-Os » Version: 9.0.6

cpe:2.3:o:paloaltonetworks:pan-os:9.0.6
Paloaltonetworks » Pan-Os » Version: 9.0.7

cpe:2.3:o:paloaltonetworks:pan-os:9.0.7
Paloaltonetworks » Pan-Os » Version: 9.0.8

cpe:2.3:o:paloaltonetworks:pan-os:9.0.8
Paloaltonetworks » Pan-Os » Version: 9.0.9

cpe:2.3:o:paloaltonetworks:pan-os:9.0.9
Paloaltonetworks » Pan-Os » Version: 9.1.0

cpe:2.3:o:paloaltonetworks:pan-os:9.1.0
Paloaltonetworks » Pan-Os » Version: 9.1.1

cpe:2.3:o:paloaltonetworks:pan-os:9.1.1
Paloaltonetworks » Pan-Os » Version: 9.1.2

cpe:2.3:o:paloaltonetworks:pan-os:9.1.2
Paloaltonetworks » Pan-Os » Version: 9.1.3

cpe:2.3:o:paloaltonetworks:pan-os:9.1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2043

Products

Pricing

Contact Us