Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The GlobalProtect external interface in Palo Alto Networks PAN-OS before 6.1.17, 7.x before 7.0.15, 7.1.x before 7.1.9, and 8.x before 8.0.2 provides different error messages for failed login attempts depending on whether the username exists, which allows remote attackers to enumerate account names and conduct brute-force attacks via a series of requests, aka PAN-SA-2017-0014 and PAN-72769.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Palo Alto Networks PAN-OS GlobalProtect external界面安全漏洞
Vulnerability Description
Palo Alto Networks PAN-OS是美国Palo Alto Networks公司为其防火墙设备开发的一套操作系统。GlobalProtect external interface是用于其中的一个网关安全保护界面。 Palo Alto Networks PAN-OS中的GlobalProtect external界面存在安全漏洞,该漏洞源于在用户登录失败后,程序提供不同的错误消息取决于用户名是否存在。远程攻击者可利用该漏洞枚举用户名称,实施暴力破解攻击。以下版本受到影响:Palo Alto
CVSS Information
N/A
Vulnerability Type
N/A