Palo Alto Networks PAN-OS critical 0-day exploited; no patch yet

The max severity (CVSS 10) bug enables command injection through the GlobalProtect feature.

alto bug command command injection critical cvss cvss 10 exploited feature globalprotect injection networks network security palo palo alto palo alto networks palo alto networks pan-os pan pan-os patch severity vulnerability management