An authentication-bypass vulnerability allows attackers to access network assets without credentials when SAML is enabled on certain firewalls and enterprise VPNs. The vulnerability affects devices that use Security Assertion Markup Language (SAML), according to a tweet by the U.S. Cybersecurity and Infrastructure Security Agency. Palo Alto Networks on Monday posted an advisory on the vulnerability, which affects the devices operating systems (PAN-OS) The vulnerability has been rated the highest score on the CVSSv3 severity scale a 10 out of 10.
Source: https://threatpost.com/cisa-nation-state-attackers-palo-alto-networks-bug/157013/