all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2024-3400: Critical Command Injection Vulnerability in Palo Alto Networks Firewalls

Add to bookmarks
April 12, 2024, 12:59 p.m. | Caitlin Condon

Rapid7 Blog blog.rapid7.com

On Friday, April 12, Palo Alto Networks published an advisory on CVE-2024-3400, a CVSS 10 vulnerability in several versions of PAN-OS, the operating system that runs on the company’s firewalls. CVE-2024-3400 allows for arbitrary code execution as root.

advisory alto april arbitrary code arbitrary code execution code code execution command command injection critical cve cve-2024 cvss cvss 10 emergent threat response firewalls injection networks operating system palo palo alto palo alto networks pan pan-os root system the company vulnerability vulnerability management

Visit resource

More from blog.rapid7.com / Rapid7 Blog

New! Insight Agent Support for ARM-based Windows in InsightVM 1 day, 10 hours ago | blog.rapid7.com
agent arm assessment devices +8
Metasploit Weekly Wrap-Up 05/31/2024 1 day, 10 hours ago | blog.rapid7.com
cve cve-2024 directory directory traversal +15
CVE-2024-24919: Check Point Security Gateway Information Disclosure 2 days, 13 hours ago | blog.rapid7.com
access advisory check check point +22
Celebrating Excellence: Joanne Guarglia and Kelly Hiscoe Recognized as CRN's 2024 Women of the Channel 2 days, 16 hours ago | blog.rapid7.com
awards career development channel team +1
Metasploit Weekly Wrap-Up 05/23/2024 1 week, 2 days ago | blog.rapid7.com
access broadcast code code execution +16
The Take Command Summit: A Day of Resilience and Preparation 1 week, 2 days ago | blog.rapid7.com
books command cybersecurity discussions +15
CVE-2024-4978: Backdoored Justice AV Solutions Viewer Software Used in Apparent Supply Chain Attack 1 week, 2 days ago | blog.rapid7.com
action attack audio cve +17
Rapid7 Releases the 2024 Attack Intelligence Report 1 week, 4 days ago | blog.rapid7.com
and response attack attack surface command +20
Metasploit Wrap-Up 05/17/2024 2 weeks, 1 day ago | blog.rapid7.com
capabilities ldap metasploit metasploit weekly wrapup +2

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com