High Threat Security Alert (A24-12-18): Vulnerability in Palo Alto Products


 

Published on: 30 December 2024

  
  

Description:

Palo Alto has published a security advisory to address a vulnerability in PAN-OS. The detailed information about the vulnerability can be found at:
https://security.paloaltonetworks.com/CVE-2024-3393

Reports indicated that a denial of service vulnerability (CVE-2024-3393) affecting PAN-OS firewalls is being exploited in the wild. System administrators are advised to take immediate actions as recommended by the vendor to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • PAN-OS 10.1 versions prior to 10.1.14-h8
  • PAN-OS 10.2 versions prior to 10.2.10-h12, 10.2.13-h2
  • PAN-OS 11.1 versions prior to 11.1.5
  • PAN-OS 11.2 versions prior to 11.2.3
  • Prisma Access running PAN-OS versions prior to 11.2.3

For detailed information of the affected systems, please refer to the corresponding security advisory at vendor's website.

 

Impact:

Successful exploitation of the vulnerability could lead to denial of service on an affected system.

 

Recommendation:

Patches for affected systems are now available.  For detailed information of the available patches, please refer to the section "Solution" of corresponding security advisory at vendor's website.

System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://security.paloaltonetworks.com/CVE-2024-3393
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3393


Tag: Palo Alto
Tags