Palo Alto Networks Security Advisories - January 2, 2018

[icecream-guy]

PAN-SA-2017-0030 - Cross Site Scripting in PAN-OS GlobalProtect
* Medium Severity
* Fixed in PAN-OS 6.1.19, PAN-OS 7.0.19, PAN-OS 7.1.14, PAN-OS 8.0.6-h3
* Affects PAN-OS GlobalProtect portal and gateway
* CVE-2017-15941

PAN-SA-2017-0031 - Cross Site Scripting in PAN-OS Captive Portal
* Medium Severity
* Fixed in PAN-OS 8.0.7
* Affects PAN-OS captive portal
* CVE-2017-16878

PAN-SA-2017-0032 - ROBOT attack against PAN-OS
* High Severity
* Fixed in 8.0.7
* Affects PAN-OS SSL/Decryption and GlobalProtect portal and gateway
* CVE-2017-17841