https://community.isc2.org/t5/Threats/Critical-RCE-Vulnerability-in-Palo-Alto-Networks-GlobalProtect/m-p/69584#M1178 <P>That’s about as bad as it gets.</P><P>&nbsp;</P><P>Are *you* running Global Protect, or sending telemetry to PAN?</P> Wed, 17 Apr 2024 16:13:49 GMT Early_Adopter 2024-04-17T16:13:49Z https://community.isc2.org/t5/Threats/Critical-RCE-Vulnerability-in-Palo-Alto-Networks-GlobalProtect/m-p/69558#M1177 <P>Dear All,</P><P>&nbsp;</P><P><SPAN>Palo Alto Networks has released hotfixes to address a critical command injection vulnerability in multiple versions of their PAN-OS software.&nbsp;Palo Alto Networks was alerted to the vulnerability by researchers from Volexity.&nbsp;The flaw is being actively exploited to place Python backdoors on vulnerable devices. According to Palo Alto Networks, the flaw affects “PAN-OS 10.2, PAN-OS 11.0, and PAN-OS 11.1 firewalls configured with GlobalProtect gateway or GlobalProtect portal (or both) and device telemetry enabled.”</SPAN></P><P>&nbsp;</P><P><SPAN><A href="https://security.paloaltonetworks.com/CVE-2024-3400?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a" target="_blank" rel="noopener">https://security.paloaltonetworks.com/CVE-2024-3400?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a</A></SPAN></P><P>&nbsp;</P><P><SPAN><A href="https://www.bleepingcomputer.com/news/security/exploit-released-for-palo-alto-pan-os-bug-used-in-attacks-patch-now/?traffic_source=Connatix" target="_blank" rel="noopener">https://www.bleepingcomputer.com/news/security/exploit-released-for-palo-alto-pan-os-bug-used-in-attacks-patch-now/?traffic_source=Connatix</A></SPAN></P><P>&nbsp;</P><P><A href="https://www.cisa.gov/news-events/alerts/2024/04/12/cisa-adds-one-known-exploited-vulnerability-catalog" target="_blank" rel="noopener">https://www.cisa.gov/news-events/alerts/2024/04/12/cisa-adds-one-known-exploited-vulnerability-catalog</A></P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 17 Apr 2024 04:25:16 GMT https://community.isc2.org/t5/Threats/Critical-RCE-Vulnerability-in-Palo-Alto-Networks-GlobalProtect/m-p/69558#M1177 Kyaw_Myo_Oo 2024-04-17T04:25:16Z https://community.isc2.org/t5/Threats/Critical-RCE-Vulnerability-in-Palo-Alto-Networks-GlobalProtect/m-p/69584#M1178 <P>That’s about as bad as it gets.</P><P>&nbsp;</P><P>Are *you* running Global Protect, or sending telemetry to PAN?</P> Wed, 17 Apr 2024 16:13:49 GMT https://community.isc2.org/t5/Threats/Critical-RCE-Vulnerability-in-Palo-Alto-Networks-GlobalProtect/m-p/69584#M1178 Early_Adopter 2024-04-17T16:13:49Z