An incorrect string comparison vulnerability in Palo Alto Networks PAN-OS software prevents Predefined Decryption Exclusions from functioning as intended. This can cause traffic destined for domains that are not specified in Predefined Decryption Exclusions to be unintentionally excluded from decryption.
2024-04-10T17:15:57.593
2025-01-24T15:58:52.233
Analyzed
CVSSv3.1: 5.3 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | paloaltonetworks | pan-os | < 9.0.16 | Yes |
| Operating System | paloaltonetworks | pan-os | < 9.1.17 | Yes |
| Operating System | paloaltonetworks | pan-os | < 10.0.13 | Yes |
| Operating System | paloaltonetworks | pan-os | ≤ 10.1.8 | Yes |
| Operating System | paloaltonetworks | pan-os | < 10.2.4 | Yes |
| Operating System | paloaltonetworks | pan-os | < 11.0.1 | Yes |
| Operating System | paloaltonetworks | pan-os | 9.0.17 | Yes |
| Operating System | paloaltonetworks | pan-os | 9.0.17 | Yes |
| Operating System | paloaltonetworks | pan-os | 10.1.9 | Yes |
| Operating System | paloaltonetworks | pan-os | 10.1.9 | Yes |
| Operating System | paloaltonetworks | pan-os | 10.2.4 | Yes |
| Operating System | paloaltonetworks | pan-os | 11.0.1 | Yes |