A Vulnerability in PAN-OS Could Allow for Arbitrary Code Execution | allinfosecnews.com

April 12, 2024, 3:55 p.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org

A vulnerability has been discovered in PAN-OS that could allow for arbitrary code execution. PAN-OS is the software that runs all Palo Alto Networks next-generation firewalls. Successful exploitation of this vulnerability could allow for arbitrary code execution in the context of the root user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

alto arbitrary code arbitrary code execution code code execution context exploitation firewalls networks next next-generation firewalls palo palo alto palo alto networks pan pan-os privileges root software vulnerability

More from www.cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

A Vulnerability in SolarWinds Access Rights Manager Could Allow for Privilege Escalation 3 days, 8 hours ago | www.cisecurity.org

access access rights account attacker +14

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution 3 days, 8 hours ago | www.cisecurity.org

arbitrary code arbitrary code execution chrome code +7

Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution 4 days, 4 hours ago | www.cisecurity.org

access arbitrary code arbitrary code execution browser +17

Multiple Vulnerabilities in Siemens Ruggedcom Crossbow Could Allow for Arbitrary Code Execution 4 days, 4 hours ago | www.cisecurity.org

access access management arbitrary code arbitrary code execution +17

Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution 4 days, 7 hours ago | www.cisecurity.org

acrobat adobe adobe acrobat application +17

Critical Patches Issued for Microsoft Products, May 14, 2024 4 days, 13 hours ago | www.cisecurity.org

accounts attacker change code +14

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution 4 days, 13 hours ago | www.cisecurity.org

arbitrary code arbitrary code execution attacker chrome +9

Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution 5 days, 10 hours ago | www.cisecurity.org

apple arbitrary code arbitrary code execution code +6

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution 1 week, 2 days ago | www.cisecurity.org

arbitrary code arbitrary code execution attacker chrome +9

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India

View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190

View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal

View on infosec-jobs.com