- Creation
- Validation
- Communication & fix
- Disclosure
nestle.com / Palo Alto (Global-network) instance is outdated
Deleted user
reported 2021-11-13
The following Palo Alto (Global-network) is publicly accessible and looks out-dated : https://vpnmos.hosting.nestle.com/global-protect/login.esp
The version seems to be 8.0.20
It is critical to update to a safe version as soon as possible since CVE-2021-3064 could allow remote attackers to DDoS or achieve RCE (Remote code execution) on the device.
The CVE-2021-3064 prevention reports are identified and dispatched with the help of https://twitter.com/HaboubiAnis
Reference :
https://security.paloaltonetworks.com/CVE-2021-3064
IP:
185.12.31.43Port:
443Detected protocol:
httpsVulnerable URL:
https://vpnmos.hosting.nestle.comFound PAN-OS web frontennd
Last update: 10/2019
Found by l9explore 2021-11-12
Report created by
deleted-user
2021-11-13
deleted-user
2021-11-13
Report edited by
BloodyShell
2021-11-13
BloodyShell
2021-11-13
Report approved by
BloodyShell
2021-11-13
BloodyShell
2021-11-13
New PDF report generated by system 2021-11-13
Report dispatched to ...@... by system 2021-11-13
Report comment dispatched to BloodyShell by system 2021-12-05
Report comment dispatched to iampritam by system 2021-12-05
Report comment dispatched to fokoil by system 2021-12-05
Report comment dispatched to thLambda by system 2021-12-05
Report marked as fixed by
deleted-user
2022-02-10
deleted-user
2022-02-10
Report closed by
deleted-user
2022-02-10
deleted-user
2022-02-10
New PDF report generated by system 2022-02-10
Report edited by
deleted-user
2022-02-10
deleted-user
2022-02-10
New PDF report generated by system 2022-02-10
Information
Owner
nestle.com
Created
2021-11-13 16:45
Updated
2022-02-10 13:42
Fixed
true
Contacts
c...@nestle.com
Status
Status
closed
Hosting contacted
false
CERT contacted
false
Download report