Description
A denial-of-service (DoS) vulnerability in Palo Alto Networks Prisma® SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to disrupt the packet processing capabilities of the device by sending a burst of crafted packets to that device.
CVSS breakdown
CVSS 4.0
Attack Vector
Physical
Attack Complexity
Low
Attack Requirements
None
Privileges Required
None
User Interaction
None
Confidentiality (Vulnerable System)
None
Integrity (Vulnerable System)
None
Availability (Vulnerable System)
High
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
AU
Y
R
Adjacent
V
D
RE
Low
U
Amber
Affected products
- Palo Alto Networks / Prisma SD-WAN6.5.0 – 6.5.1
- Palo Alto Networks / Prisma SD-WAN6.4.0 – 6.4.2
- Palo Alto Networks / Prisma SD-WAN6.3.0 – 6.3.4
- Palo Alto Networks / Prisma SD-WAN6.2.0 – 6.2.0
- Palo Alto Networks / Prisma SD-WAN6.1.0 – 6.1.10