WHAT HAPPENED?

Palo Alto Networks has released a security updates to address a CRITICAL vulnerability affecting the use of Security Assertion Markup Language in PAN-OS.

Advanced Users: For a complete description of the security advisory go to:

• CVE-2020-11996 Apache Tomcat HTTP/2 Denial of Service CVE-2020-2021 PAN-OS: Authentication Bypass in SAML Authentication:  https://security.paloaltonetworks.com/CVE-2020-2021

AFFECTED SYSTEMS:

• PAN-OS

WHAT’S THE PROBLEM?

An unauthenticated attacker with network access could exploit this vulnerability to obtain sensitive information.

RELATED LINKS

• IT Security