Published on: 10 October 2024
Palo Alto Networks has published a security advisory to address multiple vulnerabilities in Expedition. The detailed information about the vulnerabilities can be found at:
https://security.paloaltonetworks.com/PAN-SA-2024-0010
Reports indicated that the proof-of-concept (PoC) code for the vulnerabilities (CVE-2024-9464 and CVE-2024-9465) affecting Expedition is publicly available. System administrators are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.
Successful exploitation of the vulnerabilities could lead to information disclosure, privilege escalation, security restriction bypass or tampering on an affected system.
Patches for affected systems are now available. For detailed information of the available patches, please refer to the section "Solution" of corresponding security advisory at vendor's website.
System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.