Temporary DoS for Traps Agent (PAN-SA-2017-0007)

Last revised: 04/07/2017


A vulnerability exists with the Traps ESM Console that could allow an attacker to cause a temporary Denial of Service (DoS) to a Traps agent. The ESM Console does not properly validate requests to revoke a Traps agent license. (Ref # CYV-11547 / CVE-2017-7408)

Severity: Medium

Successfully exploiting this issue revokes the license for a Traps agent.

Products Affected

Traps ESM Console 3.4.3 and earlier

Available Updates

Traps ESM Console 3.4.4 and later

Workarounds and Mitigations



Palo Alto Networks would like to thank Lars Koch and Stefan Wieczorek of Deutsche Cyber-Sicherheitsorganisation GmbH for reporting this issue to us.