September 12, 2024 at 09:36AM Palo Alto Networks has released patches for numerous high-severity vulnerabilities affecting its products, including PAN-OS, Cortex XDR, and Prisma Access Browser. These vulnerabilities allow attackers to execute arbitrary commands, expose sensitive information, and more. The company has also addressed issues with the integration of Cortex XSOAR and XSIAM, and an … Read more
April 16, 2024 at 02:38PM A critical vulnerability, tracked as CVE-2024-3400, has been actively exploited in Palo Alto Networks’ PAN-OS firewall software. Threat actors can execute arbitrary code as root via command injection, impacting PAN-OS 10.2, 11.0, and 11.1. Palo Alto Networks is releasing hotfixes, urging users to disable certain features and providing threat prevention … Read more
April 15, 2024 at 03:50PM Palo Alto Networks released hotfixes to address a zero-day bug (CVE-2024-3400) in PAN-OS software, allowing threat actors to deploy a Python backdoor on affected firewalls. The attacks were limited, but the potential for further exploitation exists. The US CISA has prioritized addressing the flaw, and security experts warn of the … Read more
April 12, 2024 at 09:32AM Palo Alto Networks warns of an actively exploited critical command injection vulnerability in PAN-OS firewall, affecting specific versions. The flaw, tracked as CVE-2024-3400, poses significant risk as it allows attackers to execute code with root privileges. Mitigations and temporary fixes are advised until security updates are available to address the … Read more
April 11, 2024 at 06:12AM Palo Alto Networks’ recent updates for PAN-OS operating system patch multiple high-severity vulnerabilities, including flaws that can lead to firewall disruptions. The vulnerabilities, like CVE-2024-3385, can be exploited for denial-of-service (DoS) attacks, impacting specific models and configuration settings. The company has also addressed medium-severity issues in various products, including Panorama … Read more