CVE-2024-0009

Common Vulnerabilities and Exposures

Last Post by Ivan Lon 2 weeks ago

1 Posts

1 Users

0 Likes

14 Views

RSS

Ivan Lon

(@ivan)

Posts: 47

Eminent Member

Topic starter

Description

An improper verification vulnerability in the GlobalProtect gateway feature of Palo Alto Networks PAN-OS software enables a malicious user with stolen credentials to establish a VPN connection from an unauthorized IP address.

Severity: MEDIUM

CVSSv4.0 Base Score: 5.3 (CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/AU:N/R:A/V:D/RE:L/U:Green)

Solution

This issue is fixed in PAN-OS 10.2.4, PAN-OS 11.0.1, and all later PAN-OS versions.

Posted : 07/05/2024 4:38 pm

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed