WildFire Cross-Site Scripting Vulnerability (PAN-SA-2016-0018)

Last revised: 08/12/2016

Summary

A Palo Alto Networks firewall displaying a WildFire cloud integrated report is susceptible to a cross-site scripting condition (Ref # WTC-3355).

Severity: Medium

A sample analyzed by the WildFire cloud could trigger a cross-site scripting attack against a firewall administrator who is displaying a WildFire report. This vulnerability is restricted to the context in which the report is parsed by the cloud.

Products Affected

Palo Alto Networks hosted WildFire cloud from January to August 9th 2016

Available Updates

Palo Alto Networks hosted WildFire cloud starting August 10th 2016. Users do not need to take action.

Workarounds and Mitigations

N/A

Acknowledgements

Alexander Fischer, DCSO Deutsche Cyber-Sicherheitsorganisation