A cross-site scripting (XSS) vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to perform actions in the context of another user's browser when accessed by that other user.
"}],"value":"A cross-site scripting (XSS) vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to perform actions in the context of another user's browser when accessed by that other user."}],"exploits":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"Palo Alto Networks is not aware of any malicious exploitation of this issue.
"}],"value":"Palo Alto Networks is not aware of any malicious exploitation of this issue."}],"impacts":[{"capecId":"CAPEC-592","descriptions":[{"lang":"en","value":"CAPEC-592 Stored XSS"}]}],"metrics":[{"cvssV4_0":{"Automatable":"NO","Recovery":"AUTOMATIC","Safety":"NOT_DEFINED","attackComplexity":"LOW","attackRequirements":"NONE","attackVector":"NETWORK","baseScore":4.8,"baseSeverity":"MEDIUM","privilegesRequired":"HIGH","providerUrgency":"AMBER","subAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","userInteraction":"PASSIVE","valueDensity":"DIFFUSE","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:A/V:D/RE:M/U:Amber","version":"4.0","vulnAvailabilityImpact":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnerabilityResponseEffort":"MODERATE"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-79","description":"CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"d6c1279f-00f6-4ef7-9217-f89ffe703ec0","shortName":"palo_alto","dateUpdated":"2024-06-12T16:22:38.881Z"},"references":[{"tags":["vendor-advisory"],"url":"https://security.paloaltonetworks.com/CVE-2024-5906"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"This issue is fixed in Prisma Cloud Compute 32.05 (O'Neal - Update 5) and all later versions.
"}],"value":"This issue is fixed in Prisma Cloud Compute 32.05 (O'Neal - Update 5) and all later versions."}],"source":{"defect":["CWP-56273"],"discovery":"EXTERNAL"},"timeline":[{"lang":"en","time":"2024-06-12T16:00:00.000Z","value":"Initial publication"}],"title":"Prisma Cloud Compute: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface","x_generator":{"engine":"vulnogram 0.1.0-rc1"},"x_legacyV4Record":{"CNA_private":{"Priority":"normal","STATE":"review","TYPE":"advisory","affectsSummary":{"affected":["< 32.05 (O’Neal - Update 5)"],"appliesTo":["Prisma Cloud Compute 32"],"product_versions":["Prisma Cloud Compute 32"],"unaffected":[">= 32.05 (O’Neal - Update 5)"],"unknown":[""]},"owner":"abaishya","publish":{"month":"06","year":"2024","ym":"2024-06"},"share_with_CVE":true,"show_cvss":true},"CVE_data_meta":{"ASSIGNER":"psirt@paloaltonetworks.com","DATE_PUBLIC":"2024-06-12T16:00:00.000Z","ID":"CVE-2023-case-CWP-56273","STATE":"PUBLIC","TITLE":"Prisma Cloud Compute: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Prisma Cloud Compute","version":{"version_data":[{"version_affected":"<","version_name":"32","version_value":"32.05 (O’Neal - Update 5)"},{"version_affected":"!>=","version_name":"32","version_value":"32.05 (O’Neal - Update 5)"}]}}]},"vendor_name":"Palo Alto Networks"}]}},"credit":[{"lang":"eng","value":"Palo Alto Networks thanks Tomasz Stachowicz and Declap Harp for discovering and reporting this issue."}],"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"A cross-site scripting (XSS) vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to perform actions in the context of another user's browser when accessed by that other user."}]},"exploit":[{"lang":"en","value":"Palo Alto Networks is not aware of any malicious exploitation of this issue."}],"generator":{"engine":"vulnogram 0.1.0-rc1"},"impact":{"cvss":{"Automatable":"NO","Recovery":"AUTOMATIC","Safety":"NOT_DEFINED","attackComplexity":"LOW","attackRequirements":"NONE","attackVector":"NETWORK","baseScore":4.8,"baseSeverity":"MEDIUM","privilegesRequired":"HIGH","providerUrgency":"AMBER","subAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","userInteraction":"PASSIVE","valueDensity":"DIFFUSE","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:A/V:D/RE:M/U:Amber","version":"4.0","vulnAvailabilityImpact":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnerabilityResponseEffort":"MODERATE"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}]},"references":{"reference_data":[{"refsource":"CONFIRM","url":"https://security.paloaltonetworks.com/CVE-2023-case-CWP-56273"}]},"solution":[{"lang":"en","value":"This issue is fixed in Prisma Cloud Compute 32.05 (O'Neal - Update 5) and all later versions."}],"source":{"defect":["CWP-56273"],"discovery":"EXTERNAL"},"timeline":[{"lang":"en","time":"2024-06-12T00:00:00.000Z","value":"Initial publication"}],"x_advisoryEoL":false}},"adp":[{"affected":[{"vendor":"paloaltonetworks","product":"prisma_cloud","cpes":["cpe:2.3:a:paloaltonetworks:prisma_cloud:*:*:*:*:compute:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"32","status":"affected","lessThan":"32.05","versionType":"custom"}]},{"vendor":"paloaltonetworks","product":"prisma_cloud","cpes":["cpe:2.3:a:paloaltonetworks:prisma_cloud:*:*:*:*:compute:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"unaffected","lessThanOrEqual":"32.05","versionType":"custom"}]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-06-12T18:11:55.656236Z","id":"CVE-2024-5906","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-06-12T18:17:47.920Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-01T21:25:03.163Z"},"title":"CVE Program Container","references":[{"tags":["vendor-advisory","x_transferred"],"url":"https://security.paloaltonetworks.com/CVE-2024-5906"}]}]}}