Palo Alto Networks announced the availability of patches for security flaws in the PAN-OS that runs all Palo Alto Networks next-generation firewalls. Updates fix the following issues:

CVE-2021-3047 - Weak Cryptography Used in Web Interface Authentication (CVSS score of 4.2);

CVE-2021-3045 is an OS command injection vulnerability (CVSS score of 4.9) in the Palo Alto Networks PAN-OS web interface that enables an authenticated administrator to read any arbitrary file from the file system;

CVE-2021-3048 is a security vulnerability that can lead to firewall outage (CVSS score of 5.9);

CVE-2021-3046 is an improper authentication vulnerability (CVSS score of 6.8) in Palo Alto Networks PAN-OS software;

CVE-2021-3050 is an OS command injection vulnerability in the Palo Alto Networks PAN-OS web interface that enables an authenticated administrator to execute arbitrary OS commands to escalate privileges.

In addition, Palo Alto Networks fixed CVE-2021-26701 vulnerability (impact of Microsoft PowerShell Vulnerability CVE-2021-26701 on Cortex XSOAR).