Palo Alto Products Multiple Vulnerabilities
Release Date:
12 Apr 2024
2333
Views
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Palo Alto Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure and security restriction bypass on the targeted system.
Impact
- Denial of Service
- Information Disclosure
- Security Restriction Bypass
System / Technologies affected
- PAN-OS 10.0 versions earlier than 10.0.13
- PAN-OS 10.1 versions earlier than 10.1.12
- PAN-OS 10.1 versions earlier than 10.1.12 on Panorama
- PAN-OS 10.2 versions earlier than 10.2.8 on Panorama
- PAN-OS 10.2 versions earlier than 10.2.8
- PAN-OS 11.0 versions earlier than 11.0.4
- PAN-OS 11.0 versions earlier than 11.0.4 on Panorama
- PAN-OS 11.1 versions earlier than 11.1.2
- PAN-OS 8.1 versions earlier than 8.1.26
- PAN-OS 9.0 versions earlier than 9.0.17-h4
- PAN-OS 9.1 versions earlier than 9.1.17
- Prisma Access versions earlier than 10.2.4
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3387
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3383
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3382
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3384
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3385
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3386
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3388
Vulnerability Identifier
Source
Related Link
- https://www.auscert.org.au/bulletins/ESB-2024.2207/
- https://www.auscert.org.au/bulletins/ESB-2024.2206/
- https://www.auscert.org.au/bulletins/ESB-2024.2205/
- https://www.auscert.org.au/bulletins/ESB-2024.2204/
- https://www.auscert.org.au/bulletins/ESB-2024.2203/
- https://www.auscert.org.au/bulletins/ESB-2024.2202/
- https://www.auscert.org.au/bulletins/ESB-2024.2201/
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3387
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3383
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3382
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3384
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3385
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3386
- https://securityadvisories.paloaltonetworks.com/CVE-2024-3388
Share with