Security Architecture, Identity, Risk Assessments/Management, Data Security

OpenSSL flaw impacts various Palo Alto Networks products

BleepingComputer reports that some Palo Alto Networks firewall, XDR, and VPN offerings have been impacted by a high-severity OpenSSL vulnerability, tracked as CVE-2022-0778, which could be exploited to prompt a denial of service condition. All versions of the GlobalProtect app and Cortex XDR agent, as well as PAN-OS 8.1 and newer versions, are affected by the flaw, which will be addressed in security updates expected during the week of April 18. However, Prisma Cloud and Cortex XSOAR products are not impacted, according to Palo Alto Networks. Meanwhile, the vendor urged customers with Threat Prevention subscriptions to activate Threat IDs 92409 and 92411 to curb OpenSSL vulnerability exploitations. An OpenSSL spokesperson has said that while attackers could easily exploit the flaw, its impact has been restricted to DoS. "TLS servers may be affected if they are using client authentication (which is a less common configuration) and a malicious client attempts to connect to it. It is difficult to guess to what extent this will translate to active exploitation," the spokesperson said.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.