LeakIX report : niagaradistrictairport.ca

Creation
Validation
Communication & fix
Disclosure

niagaradistrictairport.ca / Palo Alto (Global-network) instance is outdated

Deleted user reported 2021-12-14

The following Palo Alto (Global-network) is publicly accessible and looks out-dated : https://68.71.18.142/global-protect/login.esp

It is critical to update to a safe version as soon as possible since multiple CVEs could allow remote attackers to DoS or achieve RCE (Remote code execution) on the device.

Reference:

IP:

68.71.18.142

Port:

443

Detected protocol:

https

Vulnerable URL:

https://68.71.18.142/global-protect/portal/images/favicon.ico

Found PAN-OS web frontend
Last update: 4/2019
Version: 8.1.8
Affected by CVE-2020-2034
Affected by CVE-2020-2021
Affected by CVE-2021-3064

Found by PaloAltoPlugin 2021-12-13

Report created by

deleted-user 2021-12-14

Report approved by

deleted-user 2021-12-14

New PDF report generated by system 2021-12-14

Report dispatched to ...@... by system 2021-12-14

system commented 2022-01-05: approved shows in report

bip! I'm a LeakIX probe.

This issue looks like it has been resolved!

New PDF report generated by system 2022-01-05

Report comment dispatched to zythop by system 2022-01-05

Report comment dispatched to creinhart@niagaradistrictairport.ca by system 2022-01-05

Report comment dispatched to dpilon@niagaradistrictairport.ca by system 2022-01-05

Report comment dispatched to cyberincident@cyber.gc.ca by system 2022-01-05

Report marked as fixed by

BloodyShell 2022-01-05

Report closed by

BloodyShell 2022-01-05

New PDF report generated by system 2022-01-05

Information

Owner niagaradistrictairport.ca

Created 2021-12-14 09:08

Updated 2022-01-05 15:54

Fixed true

Contacts

c...@niagaradistrictairport.ca

d...@niagaradistrictairport.ca

c...@cyber.gc.ca

Status

Status closed

Hosting contacted false

CERT contacted false

Download report