CVE-2018-5390 Information about SegmentSmack findings

Severity 0 · NONE

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Scope UNCHANGED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact NONE

NVD JSON

Published 2018-09-19

Updated 2020-06-23

Reference PAN-102323 PAN-SA-2018-0013

Discovered in production use

Description

Palo Alto Networks is aware of recent vulnerability disclousre, known as SegmentSmack, that affects Linux kernel 4.9 and later. At this time, our findings show that Palo Alto Networks PAN-OS devices are not vulnerable to this disclosure (CVE-2018-5390).

PAN-OS/Panorama platforms are not impacted by this vulnerability.

Product Status

Versions	Affected	Unaffected
PAN-OS	None	all

Severity: NONE

CVSSv3.1 Base Score: 0 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N)

Weakness Type

CWE-20 Improper Input Validation

Solution

N/A

Workarounds and Mitigations

Our NGFW users can use the configuration option bypass-exceed-oo-queue with value no which will provide protection from CVE-2018-5390 for devices positioned behind the firewall. For more information on configuration, please refer to the Best Practices for Securing Your Network from Layer 4 and Layer 7 Evasions document: https://www.paloaltonetworks.com/documentation/61/pan-os/pan-os/threat-prevention/best-practices-for-securing-your-network-from-layer-4-and-layer-7-evasions .

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-5390 Information about SegmentSmack findings

CVE-2018-5390 Information about SegmentSmack findings

Description

Product Status

Severity: NONE

Weakness Type

Solution

Workarounds and Mitigations

Vulmon Search

About

Products

Connect