Zero-Day Alert: Cri...
 
Share:
Notifications
Clear all

Zero-Day Alert: Critical Palo Alto Networks PAN-OS Flaw Under Active Attack

1 Posts
1 Users
0 Reactions
327 Views
(@kajal)
Estimable Member
Joined: 2 years ago
Posts: 252
Topic starter  

Palo Alto Networks has published a security advisory detailing a command injection flaw, tracked as CVE-2024-3400, in the GlobalProtect gateway feature of the vendor's PAN-OS software for next-generation firewalls. The zero-day vulnerability affects specific versions of the OS and "distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall," the company said.

The remote code injection (RCE) vulnerability, which was discovered by cybersecurity vendor Volexity, received a CVSS score of 10.


   
Quote
Share: