LeakIX report : jdadelivers.com/blueyonder.com

Creation
Validation
Communication & fix
Disclosure

jdadelivers.com/blueyonder.com / Palo Alto (Global-network) instance is outdated

Deleted user reported 2021-12-11

The following Palo Alto (Global-network) is publicly accessible and looks out-dated : https://149.97.183.82/global-protect/login.esp

It is critical to update to a safe version as soon as possible since multiple CVEs could allow remote attackers to DoS or achieve RCE (Remote code execution) on the device.

Reference:

IP:

149.97.183.82

Port:

443

Detected protocol:

https

Vulnerable URL:

https://149.97.183.82/global-protect/portal/images/favicon.ico

Found PAN-OS web frontend
Last update: 12/2019
Version: 8.1.12
Affected by CVE-2020-2034
Affected by CVE-2020-2021
Affected by CVE-2021-3064

Found by PaloAltoPlugin 2021-11-14

Report created by

deleted-user 2021-12-11

Report approved by

BloodyShell 2021-12-11

New PDF report generated by system 2021-12-11

Report dispatched to ...@... by system 2021-12-11

system commented 2022-01-05: approved shows in report

bip! I'm a LeakIX probe.

This issue looks like it has been resolved!

New PDF report generated by system 2022-01-05

Report comment dispatched to zythop by system 2022-01-05

Report comment dispatched to privacy@blueyonder.com by system 2022-01-05

Report comment dispatched to info@blueyonder.com by system 2022-01-05

Report comment dispatched to asset.admin@jda.com by system 2022-01-05

Report marked as fixed by

BloodyShell 2022-01-05

Report closed by

BloodyShell 2022-01-05

New PDF report generated by system 2022-01-05

Information

Owner jdadelivers.com/blueyonder.com

Created 2021-12-11 10:01

Updated 2022-01-05 16:20

Fixed true

Contacts

p...@blueyonder.com

i...@blueyonder.com

a...@jda.com

Status

Status closed

Hosting contacted false

CERT contacted false

Download report