• Creation
  • Validation
  • Communication & fix
  • Disclosure

scorpiogroup.net / Palo Alto (Global-network) instance is outdated
Deleted user reported 2021-11-14

The following Palo Alto (Global-network) is publicly accessible and looks out-dated :

https://vpntest.monaco.scorpiogroup.net/global-protect/login.esp

https://88.209.99.173/global-protect/login.esp

https://115.114.106.111/global-protect/login.esp

It is critical to update to a safe version as soon as possible since multiple CVEs could allow remote attackers to DoS or achieve RCE (Remote code execution) on the device.

Reference:

IP:
88.209.99.222
Port:
443
Detected protocol:
https
Vulnerable URL:
https://vpntest.monaco.scorpiogroup.net/global-protect/portal/images/favicon.ico 
Found PAN-OS web frontend
Last update: 8/2020
Version: 8.1.16
Affected by CVE-2021-3064
Found by PaloAltoPlugin 2021-11-13
IP:
88.209.99.222
Port:
443
Detected protocol:
https
Vulnerable URL:
https://vpntest.monaco.scorpiogroup.net/global-protect/portal/images/favicon.ico 
Found PAN-OS web frontend
Last update: 9/2020
Version: 8.1.17
Found by PaloAltoPlugin 2022-01-05
IP:
88.209.99.222
Port:
443
Detected protocol:
https
Vulnerable URL:
https://vpntest.monaco.scorpiogroup.net/global-protect/portal/images/favicon.ico 
Found PAN-OS web frontend
Last update: 9/2020
Version: 8.1.17
Found by PaloAltoPlugin 2022-02-10
Report created by deleted-user  2021-11-14
Report approved by BloodyShell  2021-11-14
New PDF report generated by system 2021-11-14
Report dispatched to ...@... by system 2021-11-14
Report dispatched to ...@... by system 2021-11-14
Report dispatched to ...@... by system 2021-11-14
Report dispatched to ...@... by system 2021-11-14
system commented 2021-11-14: approved shows in report 

Email from: 

Thank you for contacting Scorpio�s Data Protection department.

If your question is in relation to a Data Protection request we will respond within 48H.

We are unable to forward other requests or job applications.

For other requests please proceed as following:

Onboard job application please use this link: https://scorpio.compas.cloud/CrewApplication/RegistrationForm.aspx

Ashore job application please send your CV/Application to shorecareer@scorpiogroup.net<mailto:shorecareer@scorpiogroup.net>

If you are a vendor � please contact the relevant departments within the companies of our group � we are unable to relay your request.

Thank you.

Report comment dispatched to BloodyShell by system 2021-11-14
Report comment dispatched to iampritam by system 2021-11-14
Report comment dispatched to fokoil by system 2021-11-14
Report edited by BloodyShell  2021-11-14
New PDF report generated by system 2021-11-14
Report comment 901675 approved by BloodyShell  2021-11-14
New PDF report generated by system 2021-11-14
Report comment dispatched to zythop by system 2021-11-14
Report comment dispatched to cert-mc@gouv.mc by system 2021-11-14
Report comment dispatched to info@scorpiogroup.net by system 2021-11-14
Report comment dispatched to soc@scorpiogroup.net by system 2021-11-14
Report edited by BloodyShell  2021-11-14
New PDF report generated by system 2021-11-14
Report marked as fixed by deleted-user  2022-02-19
Report closed by deleted-user  2022-02-19
New PDF report generated by system 2022-02-19
Report edited by deleted-user  2022-02-19
New PDF report generated by system 2022-02-19
Information
Owner scorpiogroup.net
Created 2021-11-14 13:28
Updated 2022-02-19 15:26
Fixed true
Contacts
c...@gouv.mc
i...@scorpiogroup.net
s...@scorpiogroup.net
d...@scorpiogroup.net
Status
Status closed
Hosting contacted false
CERT contacted false
Download report

© 2024 LeakIX
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice