Attackers Will Target Critical PAN-OS Flaw, Security Experts Warn

Popular networking and edge security equipment produced by Palo Alto Networks has a critical security flaw that could easily be exploited by unauthenticated attackers to gain access to otherwise protected resources, the company said in an advisory published on Monday. The vulnerability (CVE-2020-2021) — which occurs in PAN-OS, the operating system for Palo Alto Networks’ security appliance—allows attackers who have access to a server protected with authentication using the Security Assertion Markup Language (SAML) to bypass the security and gain access to the network servers and devices protected by the hardware.

Read full article on Dark Reading