Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Kyaw_Myo_Oo
Contributor III
‎04-17-2024 12:20 AM
‎04-17-2024 12:20 AM

Critical RCE Vulnerability in Palo Alto Networks’ GlobalProtect

Dear All,

 

Palo Alto Networks has released hotfixes to address a critical command injection vulnerability in multiple versions of their PAN-OS software. Palo Alto Networks was alerted to the vulnerability by researchers from Volexity. The flaw is being actively exploited to place Python backdoors on vulnerable devices. According to Palo Alto Networks, the flaw affects “PAN-OS 10.2, PAN-OS 11.0, and PAN-OS 11.1 firewalls configured with GlobalProtect gateway or GlobalProtect portal (or both) and device telemetry enabled.”

 

https://security.paloaltonetworks.com/CVE-2024-3400?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871...

 

https://www.bleepingcomputer.com/news/security/exploit-released-for-palo-alto-pan-os-bug-used-in-att...

 

https://www.cisa.gov/news-events/alerts/2024/04/12/cisa-adds-one-known-exploited-vulnerability-catal...

 

 

 

 

 

Kyaw Myo Oo
Manager , CB BANK PCL
CCIE #58769 | PCNSE | CCSM | CISSP | PMP
Reply
1 Reply
Early_Adopter
Community Champion
‎04-17-2024 12:13 PM
‎04-17-2024 12:13 PM

That’s about as bad as it gets.

 

Are *you* running Global Protect, or sending telemetry to PAN?

Reply