The vulnerabilities don’t immediately have an effect on Panorama, Prisma Entry, or Cloud NGFW firewalls. However Palo Alto Networks nonetheless provides the vulnerabilities a CVSS base rating of 9.9, given the sensitivity of the data that may be stolen. Thus far the corporate says it’s not conscious of any malicious exploitation of the issues.
The fixes can be found in Expedition 1.2.96 and later.
All Expedition usernames, passwords and API keys ought to be rotated after upgrading to the mounted model of the appliance, the corporate stated. As well as, all firewall usernames, passwords, and API keys processed by Expedition ought to be rotated after the replace.
