High Threat Security Alert (A24-11-14): Multiple Vulnerabilities in Palo Alto Products

Description:

Palo Alto has published security advisories to address multiple vulnerabilities in PAN-OS. The detailed information about the vulnerabilities can be found at:
https://security.paloaltonetworks.com/CVE-2024-0012
https://security.paloaltonetworks.com/CVE-2024-9474

Reports indicated that multiple vulnerabilities (CVE-2024-0012 and CVE-2024-9474) affecting PAN-OS firewalls against a limited number of management interfaces are being exploited in the wild. System administrators are advised to take immediate actions as recommended by the vendor to mitigate the elevated risk of cyber attacks.

Affected Systems:

• PAN-OS 10.1 versions prior to 10.1.14-h6
• PAN-OS 10.2 versions prior to 10.2.12-h2
• PAN-OS 11.0 versions prior to 11.0.6-h1
• PAN-OS 11.1 versions prior to 11.1.5-h1
• PAN-OS 11.2 versions prior to 11.2.4-h1

For detailed information of the affected systems or management interfaces that require remediation action, please refer to the corresponding security advisory at vendor's website.

Impact:

Successful exploitation of the vulnerabilities could lead to elevation of privilege or security restriction bypass on an affected system.

Recommendation:

Patches for affected systems are now available. For detailed information of the available patches, please refer to the section "Solution" of corresponding security advisory at vendor's website.

System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

More Information:

• https://security.paloaltonetworks.com/CVE-2024-0012
• https://security.paloaltonetworks.com/CVE-2024-9474
• https://www.hkcert.org/security-bulletin/palo-alto-pan-os-multiple-vulnerabilities_20241119
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0012
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9474