QID 376562
QID 376562: Palo Alto Networks (GlobalProtect App) of the Openssl Infinite Loop Vulnerability (PAN-190175, PAN-190223)
The GlobalProtect app provides a simple way to extend the enterprise security policies out to mobile endpoints.
The Palo Alto Networks Product Security Assurance team is evaluating the OpenSSL infinite loop vulnerability (CVE-2022-0778) as it relates to our products.
Affected Versions:
GlobalProtect App 6.0 versions earlier than GlobalProtect App 6.0.1
GlobalProtect App 5.3 versions earlier than GlobalProtect App 5.3.4
GlobalProtect App 5.2 versions earlier than GlobalProtect App 5.2.12
GlobalProtect App 5.1 versions earlier than GlobalProtect App 5.1.11
QID Detection Logic (Authenticated):
This QID looks for the vulnerable version of PAN-OS
The Palo Alto Networks Product Security Assurance team is evaluating the OpenSSL infinite loop vulnerability (CVE-2022-0778) as it relates to our products.
Refer to PAN-190175, PAN-190223 for more information about patching this vulnerability.
Workaround:
Customers with a Threat Prevention subscription can block known attacks for this vulnerability by enabling Threat IDs 92409 and 92411 (Applications and Threats content update 8552). This mitigation reduces the risk of exploitation from known exploits.
Customers will need to upgrade their products to a fixed version to completely remove the risk of this issue.
- PAN-190175 -
security.paloaltonetworks.com/CVE-2022-0778 - PAN-190223 -
security.paloaltonetworks.com/CVE-2022-0778
CVEs related to QID 376562
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| PAN-190175, PAN-190223 |
security.paloaltonetworks.com/CVE-2022-0778 |