CVE-2023-6791
PAN-OS: Plaintext Disclosure of External System Integration Credentials
CVSS Score
4.9
EPSS Score
0.0%
EPSS Percentile
0th
A credential disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-only administrator to obtain the plaintext credentials of stored external system integrations such as LDAP, SCP, RADIUS, TACACS+, and SNMP from the web interface.
| CWE | CWE-701 |
| Vendor | palo alto networks |
| Product | pan-os |
| Published | Dec 13, 2023 |
| Last Updated | Feb 25, 2026 |
Stay Ahead of the Next One
Get instant alerts for palo alto networks pan-os
Be the first to know when new medium vulnerabilities affecting palo alto networks pan-os are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected Versions
Palo Alto Networks / PAN-OS
8.1 < 8.1.24-h1 9.0 < 9.0.17 9.1 < 9.1.16 10.0 < 10.0.12 10.1 < 10.1.9 10.2 < 10.2.4 11.0 < 11.0.1
Palo Alto Networks / Prisma Access
All versions affected Palo Alto Networks / Cloud NGFW
All versions affected References
Credits
Palo Alto Networks thanks Kajetan Rostojek for discovering and reporting this issue.