{"id":9451,"date":"2021-11-15T21:00:12","date_gmt":"2021-11-15T12:00:12","guid":{"rendered":"https:\/\/www.secuavail.com\/kb\/?p=9451"},"modified":"2024-08-23T11:41:02","modified_gmt":"2024-08-23T02:41:02","slug":"palo-alto-networks-cve-2021-3064","status":"publish","type":"post","link":"https:\/\/www.secuavail.com\/kb\/nw-device\/palo-alto-networks-cve-2021-3064\/","title":{"rendered":"\u3010Palo Alto Networks\u3011GlobalProtect\u306e\u6df1\u523b\u306a\u8106\u5f31\u6027\u306b\u3064\u3044\u3066(CVE-2021-3064)"},"content":{"rendered":"<p>\u203b\u672c\u8a18\u4e8b\u306e\u5185\u5bb9\u306f\u30012021\u5e7411\u670815\u65e5\u73fe\u5728\u306e\u516c\u958b\u60c5\u5831\u3092\u3082\u3068\u306b\u8a18\u8f09\u3057\u3066\u304a\u308a\u307e\u3059\u3002\u5177\u4f53\u7684\u306a\u5f71\u97ff\u3001\u5bfe\u7b56\u3001\u8a2d\u5b9a\u65b9\u6cd5\u3001\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306e\u5165\u624b\u65b9\u6cd5\u7b49\u306b\u3064\u3044\u3066\u306f\u3001\u8cfc\u5165\u5143\u306e\u4ee3\u7406\u5e97\u69d8\u3084\u904b\u7528\u30fb\u4fdd\u5b88\u30d9\u30f3\u30c0\u30fc\u69d8\u3078\u304a\u554f\u3044\u5408\u308f\u305b\u304f\u3060\u3055\u3044\u3002<\/p>\n<p>Palo Alto Networks\u793e\u3088\u308a\u3001SSL-VPN\u6a5f\u80fd\u3067\u3042\u308bGlobalProtect Portal(\u30dd\u30fc\u30bf\u30eb)\u304a\u3088\u3073Gateway(\u30b2\u30fc\u30c8\u30a6\u30a7\u30a4)\u306e\u8106\u5f31\u6027\u60c5\u5831\u304c2021\u5e7411\u670810\u65e5\u306b\u516c\u958b\u3055\u308c\u307e\u3057\u305f\u3002<br \/>\n\u672c\u8106\u5f31\u6027\u306f\u3001GlobalProtect Portal\u307e\u305f\u306fGateway\u304c\u6709\u52b9\u306b\u306a\u3063\u3066\u3044\u308bPA\u30b7\u30ea\u30fc\u30ba\u304c\u5f71\u97ff\u3092\u53d7\u3051\u3001\u8106\u5f31\u6027\u3092\u60aa\u7528\u3055\u308c\u305f\u5834\u5408\u3001\u8a8d\u8a3c\u3055\u308c\u3066\u3044\u306a\u3044\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u30d9\u30fc\u30b9\u306e\u653b\u6483\u8005\u304b\u3089root\u6a29\u9650\u3067\u4efb\u610f\u306e\u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3055\u308c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\"><p class=\"ez-toc-title\" style=\"cursor:inherit\">\u76ee\u6b21<\/p>\n<\/div><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.secuavail.com\/kb\/nw-device\/palo-alto-networks-cve-2021-3064\/#%E8%84%86%E5%BC%B1%E6%80%A7%E3%81%AE%E6%A6%82%E8%A6%81\" >\u8106\u5f31\u6027\u306e\u6982\u8981<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.secuavail.com\/kb\/nw-device\/palo-alto-networks-cve-2021-3064\/#%E5%AF%BE%E7%AD%96%E3%81%8A%E3%82%88%E3%81%B3%E7%B7%A9%E5%92%8C%E7%AD%96\" >\u5bfe\u7b56\u304a\u3088\u3073\u7de9\u548c\u7b56<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.secuavail.com\/kb\/nw-device\/palo-alto-networks-cve-2021-3064\/#%E3%82%BD%E3%83%95%E3%83%88%E3%82%A6%E3%82%A7%E3%82%A2%E3%81%AE%E3%82%A2%E3%83%83%E3%83%97%E3%83%87%E3%83%BC%E3%83%88\" >\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.secuavail.com\/kb\/nw-device\/palo-alto-networks-cve-2021-3064\/#Threat_Prevention%E8%84%86%E5%BC%B1%E6%80%A7%E9%98%B2%E5%BE%A1%E3%82%B7%E3%82%B0%E3%83%8D%E3%83%81%E3%83%A3%E3%81%AE%E9%81%A9%E7%94%A8%E3%81%AB%E3%82%88%E3%82%8B%E7%B7%A9%E5%92%8C\" >Threat Prevention(\u8106\u5f31\u6027\u9632\u5fa1)\u30b7\u30b0\u30cd\u30c1\u30e3\u306e\u9069\u7528\u306b\u3088\u308b\u7de9\u548c<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.secuavail.com\/kb\/nw-device\/palo-alto-networks-cve-2021-3064\/#%E7%B7%8A%E6%80%A5%E5%BA%A6%EF%BC%9A%E9%AB%98%EF%BC%81%E5%AE%89%E5%85%A8%E3%81%AA%E6%8E%A5%E7%B6%9A%E3%82%92%E8%A1%8C%E3%81%86%E3%81%9F%E3%82%81%E3%81%AB%E3%81%AF%E6%97%A9%E6%80%A5%E3%81%AA%E5%AF%BE%E5%BF%9C%E3%81%8C%E3%82%AA%E3%82%B9%E3%82%B9%E3%83%A1\" >\u7dca\u6025\u5ea6\uff1a\u9ad8\uff01\u5b89\u5168\u306a\u63a5\u7d9a\u3092\u884c\u3046\u305f\u3081\u306b\u306f\u65e9\u6025\u306a\u5bfe\u5fdc\u304c\u30aa\u30b9\u30b9\u30e1<\/a><\/li><\/ul><\/nav><\/div>\n<h2><span class=\"ez-toc-section\" id=\"%E8%84%86%E5%BC%B1%E6%80%A7%E3%81%AE%E6%A6%82%E8%A6%81\"><\/span>\u8106\u5f31\u6027\u306e\u6982\u8981<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u5f71\u97ff\u3092\u53d7\u3051\u308b\u30d0\u30fc\u30b8\u30e7\u30f3\uff1aPAN-OS 8.1 (8.1.17\u672a\u6e80\u306e\u30d0\u30fc\u30b8\u30e7\u30f3)<br \/>\nCVSSv3.1 Base Score: 9.8 (CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H)<\/p>\n<p>\u30fbPaloAlto Networks\u793e\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a2\u30c9\u30d0\u30a4\u30b6\u30ea<br \/>\n<a href=\"https:\/\/security.paloaltonetworks.com\/CVE-2021-3064\" target=\"_blank\" rel=\"noopener\">CVE-2021-3064 PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces<\/a><\/p>\n<p>\u30fb\u672c\u8106\u5f31\u6027\u3092\u767a\u898b\u3057\u305f Randori Attack Team\u306b\u3088\u308b\u30d6\u30ed\u30b0<br \/>\n<a href=\"https:\/\/www.randori.com\/blog\/cve-2021-3064\/\" target=\"_blank\" rel=\"noopener\">Zero-Day Disclosure: PAN GlobalProtect CVE-2021-3064 (randori.com)<\/a><\/p>\n<p>Randori Attack Team\u3067\u306f\u3001\u8106\u5f31\u6027\u306e\u5177\u4f53\u7684\u306a\u8a73\u7d30\u306f\u4e0a\u8a18\u8a18\u4e8b\u516c\u958b\u306e30\u65e5\u5f8c\u306b\u516c\u958b\u3059\u308b\u3068\u3057\u3066\u3044\u307e\u3059\u3002<br \/>\n\u307e\u305f\u3001\u4e0a\u8a18\u30d6\u30ed\u30b0\u4e2d\u306e\u52d5\u753b\u306e20\u79d2\u3054\u308d\u304b\u3089\u3001\u5b9f\u969b\u306bcat\u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3057\u30d0\u30fc\u30b8\u30e7\u30f3\u60c5\u5831\u3084passwd\u30d5\u30a1\u30a4\u30eb\u3092\u53c2\u7167\u3057\u3066\u3044\u308b\u69d8\u5b50\u304c\u308f\u304b\u308a\u307e\u3059\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%E5%AF%BE%E7%AD%96%E3%81%8A%E3%82%88%E3%81%B3%E7%B7%A9%E5%92%8C%E7%AD%96\"><\/span>\u5bfe\u7b56\u304a\u3088\u3073\u7de9\u548c\u7b56<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u5f53\u793e\u306e\u8abf\u67fb\u3067\u306f\u3001\u73fe\u6642\u70b9\u30672\u3064\u306e\u5bfe\u7b56\u304c\u78ba\u8a8d\u3067\u304d\u3066\u304a\u308a\u307e\u3059\u3002<\/p>\n<h3><span class=\"ez-toc-section\" id=\"%E3%82%BD%E3%83%95%E3%83%88%E3%82%A6%E3%82%A7%E3%82%A2%E3%81%AE%E3%82%A2%E3%83%83%E3%83%97%E3%83%87%E3%83%BC%E3%83%88\"><\/span>\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>PAN-OS 8.1.17\u304a\u3088\u3073\u305d\u308c\u4ee5\u964d\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u3067\u5bfe\u7b56\u3055\u308c\u3066\u304a\u308a\u3001\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3092\u9069\u7528\u3059\u308b\u3053\u3068\u3067\u56de\u907f\u3067\u304d\u307e\u3059\u3002<br \/>\n\u203b\u306a\u304a\u3001PAN-OS 9.0\u7cfb\u30019.1\u7cfb\u300110.0\u7cfb\u300110.1\u7cfb\u3067\u306f\u5f71\u97ff\u306f\u53d7\u3051\u306a\u3044\u3068\u3055\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Threat_Prevention%E8%84%86%E5%BC%B1%E6%80%A7%E9%98%B2%E5%BE%A1%E3%82%B7%E3%82%B0%E3%83%8D%E3%83%81%E3%83%A3%E3%81%AE%E9%81%A9%E7%94%A8%E3%81%AB%E3%82%88%E3%82%8B%E7%B7%A9%E5%92%8C\"><\/span>Threat Prevention(\u8106\u5f31\u6027\u9632\u5fa1)\u30b7\u30b0\u30cd\u30c1\u30e3\u306e\u9069\u7528\u306b\u3088\u308b\u7de9\u548c<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u8a72\u5f53\u30d0\u30fc\u30b8\u30e7\u30f3\u3092\u3054\u5229\u7528\u306e\u5834\u5408\u3001\u901f\u3084\u304b\u306a\u30d0\u30fc\u30b8\u30e7\u30f3\u30a2\u30c3\u30d7\u3092\u304a\u3059\u3059\u3081\u3057\u307e\u3059\u304c\u3001Palo Alto Networks\u793e\u304b\u3089\u306f\u3001\u524d\u8ff0\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a2\u30c9\u30d0\u30a4\u30b6\u30ea\u3067\u8106\u5f31\u6027\u9632\u5fa1(\u3044\u308f\u3086\u308bIPS\u6a5f\u80fd)\u306e\u30b7\u30b0\u30cd\u30c1\u30e3ID 91820\u306891855\u3092\u30d6\u30ed\u30c3\u30af\u8a2d\u5b9a\u3068\u3059\u308b\u3053\u3068\u3067\u7de9\u548c\u3067\u304d\u308b\u3068\u30a2\u30ca\u30a6\u30f3\u30b9\u3055\u308c\u3066\u3044\u307e\u3059\u3002<br \/>\n\u306a\u304a\u3001\u4e0a\u8a18IPS\u6a5f\u80fd\u306b\u3088\u308b\u7de9\u548c\u306b\u304a\u3044\u3066SSL\u5fa9\u53f7\u5316\u306f\u5fc5\u9808\u3067\u306f\u306a\u3044\u3068\u306e\u3053\u3068\u3067\u3059\u3002<\/p>\n<p>\u8a2d\u5b9a\u306e\u30a4\u30e1\u30fc\u30b8\u306f\u4ee5\u4e0b\u306e\u901a\u308a\u3067\u3059\u3002<\/p>\n<p>1.GlobalProtect Portal \u307e\u305f\u306f Gateway\u3078\u306e\u901a\u4fe1\u3092\u8a31\u53ef\u3059\u308b\u30dd\u30ea\u30b7\u30fc\u306b\u9069\u7528\u3055\u308c\u305f\u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\u3092\u7de8\u96c6\u3057\u307e\u3059\u3002<\/p>\n<p>\u3010\u3054\u6ce8\u610f\u3011<br \/>\nGlobal Protect Gateway\u307e\u305fPortal\u304cPA\u30b7\u30ea\u30fc\u30ba\u306e\u914d\u4e0b\u306b\u5b58\u5728\u3059\u308b\u5834\u5408\u306f\u3001Global Protect\u5b9b\u306e\u901a\u4fe1\u306e\u8106\u5f31\u6027\u9632\u5fa1\u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\u3092\u9069\u7528\u3067\u304d\u307e\u307e\u3059\u304c\u3001\u4e00\u53f0\u306ePA\u30b7\u30ea\u30fc\u30ba\u3092Portal\u304a\u3088\u3073Gateway\u3068\u3057\u3066\u904b\u7528\u3057\u3066\u3044\u308b\u5834\u5408\u306f\u3001Untrust\u30be\u30fc\u30f3\u304b\u3089Untrust\u30be\u30fc\u30f3\u5b9b\u306a\u3069\u3001GlobalProtect\u5b9b\u306e\u901a\u4fe1\u304c\u30de\u30c3\u30c1\u3059\u308b\u30dd\u30ea\u30b7\u30fc\u3092\u5b9a\u7fa9\u3057\u3001\u8106\u5f31\u6027\u9632\u5fa1\u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\u3092\u9069\u7528\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002<br \/>\n\u300cUntrust to Untrust\u300d\u306e\u30dd\u30ea\u30b7\u30fc\u3092\u9069\u7528\u3057\u305f\u5834\u5408\u3001\u60f3\u5b9a\u5916\u306e\u901a\u4fe1\u5f71\u97ff\u7b49\u304c\u767a\u751f\u3059\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u306e\u3067\u3001\u5177\u4f53\u7684\u306a\u8a2d\u5b9a\u65b9\u6cd5\u306f\u3001\u8cfc\u5165\u5143\u306e\u4ee3\u7406\u5e97\u69d8\u3084\u4fdd\u5b88\u30d9\u30f3\u30c0\u30fc\u69d8\u3078\u304a\u554f\u3044\u5408\u308f\u305b\u304f\u3060\u3055\u3044\u3002<\/p>\n<p><a href=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_1.png\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-9453 size-medium\" src=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_1-300x209.png\" alt=\"\" width=\"300\" height=\"209\" srcset=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_1-300x209.png 300w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_1-1024x713.png 1024w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_1-768x535.png 768w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_1.png 1239w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/p>\n<p>2.\u300c\u4f8b\u5916\u300d\u30bf\u30d6\u3067\u30b7\u30b0\u30cd\u30c1\u30e3ID 91820\u306891855\u3067\u30d5\u30a3\u30eb\u30bf\u30ea\u30f3\u30b0\u3057\u307e\u3059\u3002<\/p>\n<p>\u30d5\u30a3\u30eb\u30bf\u5165\u529b\u4f8b\uff1a( id eq '91855' ) or ( id eq '91820' )<br \/>\n\u203b\u300c\u3059\u3079\u3066\u306e\u30b7\u30b0\u30cd\u30c1\u30e3\u306e\u8868\u793a\u300d\u306b\u30c1\u30a7\u30c3\u30af\u3092\u5165\u308c\u307e\u3059\u3002<\/p>\n<p>\u300cInvalid HTTP Request Message Detection\u300d\u304c2\u3064\u30d2\u30c3\u30c8\u3057\u307e\u3059\u3002(\u540d\u524d\u306f\u540c\u3058\u3067\u3059\u304cID\u304c\u7570\u306a\u308a\u307e\u3059\u3002)<\/p>\n<p><a href=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_3.png\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-9465 size-medium\" src=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_3-300x173.png\" alt=\"\" width=\"300\" height=\"173\" srcset=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_3-300x173.png 300w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_3-1024x590.png 1024w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_3-768x443.png 768w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_3.png 1209w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/p>\n<p>3.\u300c\u30c9\u30ed\u30c3\u30d7\u300d\u306a\u3069\u306e\u9632\u5fa1\u8a2d\u5b9a\u306b\u5909\u66f4\u3057\u307e\u3059\u3002<br \/>\n\u8aa4\u691c\u77e5\u3084\u8aa4\u906e\u65ad\u3092\u4e8b\u524d\u306b\u78ba\u8a8d\u3057\u305f\u3044\u5834\u5408\u306f\u300cAlert\u300d\u306b\u8a2d\u5b9a\u3057\u307e\u3059\u3002<br \/>\n\u203b\u300c\u6709\u52b9\u5316\u300d\u306e\u30c1\u30a7\u30c3\u30af\u3082\u5fd8\u308c\u305a\u306b\u884c\u3063\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n<p><a href=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_4.png\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-9455 size-medium\" src=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_4-300x173.png\" alt=\"\" width=\"300\" height=\"173\" srcset=\"https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_4-300x173.png 300w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_4-1024x592.png 1024w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_4-768x444.png 768w, https:\/\/www.secuavail.com\/kb\/wp-content\/uploads\/2021\/11\/palo-alto-networks-cve-2021-3064_4.png 1206w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/p>\n<p>\u8a2d\u5b9a\u3092\u9069\u7528(\u30b3\u30df\u30c3\u30c8)\u3057\u307e\u3059\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%E7%B7%8A%E6%80%A5%E5%BA%A6%EF%BC%9A%E9%AB%98%EF%BC%81%E5%AE%89%E5%85%A8%E3%81%AA%E6%8E%A5%E7%B6%9A%E3%82%92%E8%A1%8C%E3%81%86%E3%81%9F%E3%82%81%E3%81%AB%E3%81%AF%E6%97%A9%E6%80%A5%E3%81%AA%E5%AF%BE%E5%BF%9C%E3%81%8C%E3%82%AA%E3%82%B9%E3%82%B9%E3%83%A1\"><\/span>\u7dca\u6025\u5ea6\uff1a\u9ad8\uff01\u5b89\u5168\u306a\u63a5\u7d9a\u3092\u884c\u3046\u305f\u3081\u306b\u306f\u65e9\u6025\u306a\u5bfe\u5fdc\u304c\u30aa\u30b9\u30b9\u30e1<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u7dca\u6025\u5ea6\u306e\u9ad8\u3044Palo Alto Networks PAN-OS\u306eGlobalProtect\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\u304a\u5c4a\u3051\u3057\u307e\u3057\u305f\u3002<br \/>\nGlobalProtect\u306fSSL-VPN\u6a5f\u80fd\u3067\u3042\u308a\u3001\u30e6\u30fc\u30b6\u304c\u5feb\u9069\u306b\u30c6\u30ec\u30ef\u30fc\u30af\u3084\u5b89\u5168\u306a\u793e\u5185\u63a5\u7d9a\u3092\u884c\u3046\u305f\u3081\u306b\u306f\u3001\u9001\u4fe1\u5143IP\u30a2\u30c9\u30ec\u30b9\u7b49\u306b\u3088\u308b\u5236\u9650\u304c\u96e3\u3057\u304f\u3001\u3055\u3089\u306b\u4eca\u56de\u306e\u8106\u5f31\u6027\u306f\u30ea\u30e2\u30fc\u30c8\u304b\u3089\u8a8d\u8a3c\u4e0d\u8981\u3067\u30b3\u30fc\u30c9\u304c\u5b9f\u884c\u3055\u308c\u308b\u8106\u5f31\u6027(RCE)\u3067\u3042\u308b\u305f\u3081\u3001\u65e9\u6025\u306a\u5bfe\u7b56\u3092\u304a\u3059\u3059\u3081\u3057\u307e\u3059\u3002<\/p>\n<p>\u6700\u5f8c\u307e\u3067\u304a\u8aad\u307f\u3044\u305f\u3060\u304d\u3042\u308a\u304c\u3068\u3046\u3054\u3056\u3044\u307e\u3057\u305f\uff01<br \/>\n\u7686\u69d8\u306e\u304a\u5f79\u306b\u305f\u3066\u307e\u3059\u3068\u5e78\u3044\u3067\u3059\u3002<\/p>\n<p>\u3010\u66f4\u65b0\u5c65\u6b74\u3011<br \/>\n2021\/11\/15 \u65b0\u898f\u516c\u958b<br \/>\n2021\/11\/16 \u4e00\u90e8\u30a2\u30f3\u30ab\u30fc\u30c6\u30ad\u30b9\u30c8\u306a\u3069\u306e\u6587\u8a00\u3092\u4fee\u6b63<\/p>\n","protected":false},"excerpt":{"rendered":"\u203b\u672c\u8a18\u4e8b\u306e\u5185\u5bb9\u306f\u30012021\u5e7411\u670815\u65e5\u73fe\u5728\u306e\u516c\u958b\u60c5\u5831\u3092\u3082\u3068\u306b\u8a18\u8f09\u3057\u3066\u304a\u308a\u307e\u3059\u3002\u5177\u4f53\u7684\u306a\u5f71\u97ff\u3001\u5bfe\u7b56\u3001\u8a2d\u5b9a\u65b9\u6cd5\u3001\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306e\u5165\u624b\u65b9\u6cd5\u7b49\u306b\u3064\u3044\u3066\u306f\u3001\u8cfc\u5165\u5143\u306e\u4ee3\u7406\u5e97\u69d8\u3084\u904b\u7528\u30fb\u4fdd\u5b88\u30d9\u30f3\u30c0\u30fc\u69d8\u3078\u304a\u554f\u3044\u5408\u308f\u305b\u304f\u3060\u3055\u3044\u3002 Palo  [&hellip;]","protected":false},"author":16,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[49,55],"tags":[],"class_list":["post-9451","post","type-post","status-publish","format-standard","hentry","category-nw-device","category-paloalto"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/posts\/9451","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/users\/16"}],"replies":[{"embeddable":true,"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/comments?post=9451"}],"version-history":[{"count":13,"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/posts\/9451\/revisions"}],"predecessor-version":[{"id":9470,"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/posts\/9451\/revisions\/9470"}],"wp:attachment":[{"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/media?parent=9451"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/categories?post=9451"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.secuavail.com\/kb\/wp-json\/wp\/v2\/tags?post=9451"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}