all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2024-3400: Command Injection Vulnerability in Palo Alto Networks PAN-OS

Add to bookmarks
April 15, 2024, midnight |

The GreyNoise Blog www.greynoise.io

On April 12th, 2024, Palo Alto Networks disclosed CVE-2024-3400, a critical command injection vulnerability in PAN-OS software versions 10.2, 11.0, and 11.1, allowing unauthenticated attackers to run arbitrary code with root privileges on affected firewalls when GlobalProtect gateway and device telemetry are active.

alto april arbitrary code attackers code command command injection critical cve cve-2024 cve-2024-3400 device firewalls gateway globalprotect injection networks palo palo alto palo alto networks palo alto networks pan-os pan pan-os privileges root run software telemetry unauthenticated vulnerability

Visit resource

More from www.greynoise.io / The GreyNoise Blog

Honeypots Are Back: The Movie: The Blog 4 days, 5 hours ago | www.greynoise.io
attackers back blog critical +7
NetNoiseCon - Recapping our Debut Event 1 week, 4 days ago | www.greynoise.io
advice career career advice event +8
2024 Verizon DBIR: Surviving the Year of the Vuln 2 weeks, 3 days ago | www.greynoise.io
attacks breach cyber cyber attacks +16
What We're Reading: April 2024 2 weeks, 5 days ago | www.greynoise.io
april articles attention books +11
Exploring GreyNoise: The User-Centric Design Approach in Cybersecurity 3 weeks, 4 days ago | www.greynoise.io
accessibility cybersecurity design discover +6
Decrypting Fortinet's FortiOS 7.0.x 3 weeks, 5 days ago | www.greynoise.io
algorithm chacha20 doing encryption +10
GreyNoise Tags Its Way to 1337 Elite Status 1 month ago | www.greynoise.io
greynoise led sift tag +2
CVE-2024-3400: Command Injection Vulnerability in Palo Alto Networks PAN-OS 1 month ago | www.greynoise.io
alto april arbitrary code attackers +26
Artificial Intelligence, Real Intel: How GreyNoise is Leveraging AI Advances to Improve Intelligence for Discovery, … 1 month, 1 week ago | www.greynoise.io
artificial artificial intelligence attack copilot +17

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India
View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190
View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal
View on infosec-jobs.com