Silverfort Researchers Discover an Authentication Bypass Vulnerability in Palo Alto Networks PAN-OS [CVE-2020-2002]

Palo Alto Networks published an advisory about a KDC-spoofing vulnerability in PAN-OS  that was discovered and responsibly disclosed to Palo Alto Networks by Silverfort researchers Yoav Iellin, Yaron Kassner and Rotem Zach. The vulnerability affected all supported versions of PAN-OS, and all interfaces that used a Kerberos authentication profile. After disclosing the vulnerability, Palo Alto […]

Silverfort Researchers: Kerberos Exploit Can Bypass Authentication to Cisco ASA [CVE-2020-3125]

Security researchers at Silverfort, provider of agentless authentication platform, identified a severe vulnerability that can enable hackers to gain control over Cisco Adaptive Security Appliance (ASA). All ASA versions are affected. After disclosing the vulnerability to Cisco, Cisco fixed all supported versions of ASA and published an advisory on it. The vulnerability (CVE-2020-3125) was assigned […]

Silverfort Researchers Discover an Authentication Bypass Vulnerability in Palo Alto Networks PAN-OS [CVE-2020-2002]

Palo Alto Networks published an advisory about a KDC-spoofing vulnerability in PAN-OS  that was discovered and responsibly disclosed to Palo Alto Networks by Silverfort researchers Yoav Iellin, Yaron Kassner and Rotem Zach. The vulnerability affected all supported versions of PAN-OS, and all interfaces that used a Kerberos authentication profile. After disclosing the vulnerability, Palo Alto […]