Vulnerability in Palo Alto Networks Cloud Ngfw
CVE-2022-0028
A PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct reflected and amplified TCP denial-of-service (RDoS) attacks. The DoS attack would appear to originate from a Palo Alto Networks PA-Series (hard…
EPSS: 0.047 (89.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.6 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H.
Affected products
- Palo Alto Networks Cloud Ngfw — versions All
- Palo Alto Networks Pan-os — versions 8.1, 9.0, 9.1
- Palo Alto Networks Prisma Access — versions 2.1 All, 2.2 All, 3.0 All
Weakness classification (CWE)
CISA KEV (Known Exploited Vulnerabilities)
This CVE is on the CISA KEV catalog, added on . CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.
BOD 22-01 due date: .
Required action: Apply updates per vendor instructions.
Public proof-of-concept exploits
References
- security.paloaltonetworks.com/CVE-2022-0028 (x_refsource_MISC)
Frequently asked questions
- What is CVE-2022-0028?
- CVE-2022-0028 is a high-severity vulnerability in Palo Alto Networks Cloud Ngfw, classified under CWE-406. CVSS score: 8.6/10. Published 2022-08-10.
- How severe is CVE-2022-0028?
- High severity. CVSS v3 base score is 8.6 out of 10.
- Is CVE-2022-0028 known to be exploited?
- Yes. CVE-2022-0028 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2022-08-22), indicating it is being actively exploited. 5 public proof-of-concept repositories are indexed.