An OS command injection vulnerability in the management server component of PAN-OS allows an authenticated user to potentially execute arbitrary commands with root privileges. This issue affects: All PAN-OS 7.1 versions; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2007
Reference (s):
- https://security.paloaltonetworks.com/CVE-2020-2007