A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall.
Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.
References
Link | Resource |
---|---|
https://security.paloaltonetworks.com/CVE-2024-3400 | Vendor Advisory |
https://unit42.paloaltonetworks.com/cve-2024-3400/ | Exploit Vendor Advisory |
https://www.paloaltonetworks.com/blog/2024/04/more-on-the-pan-os-cve/ | Technical Description Vendor Advisory |
https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: palo_alto
Published: 2024-04-12T07:20:00.707Z
Updated: 2024-06-04T17:31:26.144Z
Reserved: 2024-04-05T17:40:30.117Z
Link: CVE-2024-3400
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-04-12T08:15:06.230
Modified: 2024-05-29T16:00:24.093
Link: CVE-2024-3400
JSON object: View
Redhat Information
No data.