PAN-OS: privilege escalation (CVE-2024-9474) #shorts #breaking

CVE

This CVE relates to a newly published zero-day vulnerability in Palo Alto Networks PAN-OS software. This security flaw allows a PAN-OS administrator, who has access to the management web interface, to escalate privileges and perform actions on the firewall with root access. This means they can execute commands with the highest level of permissions, potentially compromising the firewall's integrity. It's important to note that this vulnerability does not impact Cloud NGFW and Prisma Access systems.

Watch the full video on YouTube: CVE-2024-9474

Remediation and exploitation details

This chain involves the following actors

This following systems are involved

Attack entry point

Remediation actions

Exploitation actions

Related Content

NOTE: The following related content has not been vetted and may be unsafe.

CVE database technical details

CVE ID
CVE-2024-9474
Description
A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administrator with access to the management web interface to perform actions on the firewall with root privileges. Cloud NGFW and Prisma Access are not impacted by this vulnerability.
Provider
palo_alto
CWE / problem types
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Affected Software Versions
Palo Alto Networks:Cloud NGFW:[{'status': 'unaffected', 'version': 'All'}],Palo Alto Networks:PAN-OS:[{'changes': [{'at': '11.2.4-h1', 'status': 'unaffected'}], 'lessThan': '11.2.4-h1', 'status': 'affected', 'version': '11.2.0', 'versionType': 'custom'}, {'changes': [{'at': '11.1.5-h1', 'status': 'unaffected'}], 'lessThan': '11.1.5-h1', 'status': 'affected', 'version': '11.1.0', 'versionType': 'custom'}, {'changes': [{'at': '11.0.6-h1', 'status': 'unaffected'}], 'lessThan': '11.0.6-h1', 'status': 'affected', 'version': '11.0.0', 'versionType': 'custom'}, {'changes': [{'at': '10.2.12-h2', 'status': 'unaffected'}], 'lessThan': '10.2.12-h2', 'status': 'affected', 'version': '10.2.0', 'versionType': 'custom'}, {'changes': [{'at': '10.1.14-h6', 'status': 'unaffected'}], 'lessThan': '10.1.14-h6', 'status': 'affected', 'version': '10.1.0', 'versionType': 'custom'}],Palo Alto Networks:Prisma Access:[{'status': 'unaffected', 'version': 'All'}]
Date Published
2024-11-18T15:48:23.405Z
Last Updated
2024-11-29T16:10:39.124Z