When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option is disabled (unchecked), improper verification of signatures in PAN-OS SAML authentication enables an unauthenticated network-based attacker to access protected resources. The attacker must have network access to the vulnerable server to exploit this vulnerabil
Palo Alto PAN-OS 11.x | Palo Alto PAN-OS (PA-Series/VM-Series/Panorama) | Palo Alto Panorama Management
APT
CVE-2020-2021
NVD
Update to v9.1.3