all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2024-3400: Command Injection Vulnerability in Palo Alto Networks PAN-OS

Add to bookmarks
April 15, 2024, midnight |

The GreyNoise Blog www.greynoise.io

On April 12th, 2024, Palo Alto Networks disclosed CVE-2024-3400, a critical command injection vulnerability in PAN-OS software versions 10.2, 11.0, and 11.1, allowing unauthenticated attackers to run arbitrary code with root privileges on affected firewalls when GlobalProtect gateway and device telemetry are active.

alto april arbitrary code attackers code command command injection critical cve cve-2024 cve-2024-3400 device firewalls gateway globalprotect injection networks palo palo alto palo alto networks palo alto networks pan-os pan pan-os privileges root run software telemetry unauthenticated vulnerability

Visit resource

More from www.greynoise.io / The GreyNoise Blog

Exploring GreyNoise: The User-Centric Design Approach in Cybersecurity 6 days, 11 hours ago | www.greynoise.io
accessibility cybersecurity design discover +6
Decrypting Fortinet's FortiOS 7.0.x 1 week ago | www.greynoise.io
algorithm chacha20 doing encryption +10
GreyNoise Tags Its Way to 1337 Elite Status 1 week, 4 days ago | www.greynoise.io
greynoise led sift tag +2
CVE-2024-3400: Command Injection Vulnerability in Palo Alto Networks PAN-OS 2 weeks, 1 day ago | www.greynoise.io
alto april arbitrary code attackers +26
Artificial Intelligence, Real Intel: How GreyNoise is Leveraging AI Advances to Improve Intelligence for Discovery, … 3 weeks ago | www.greynoise.io
artificial artificial intelligence attack copilot +17
CVE-2024-3273: D-Link NAS RCE Exploited in the Wild 3 weeks, 1 day ago | www.greynoise.io
code code execution critical cve +12
NetNoiseCon: Amplifying the Future of InfoSec 4 weeks ago | www.greynoise.io
advice career career advice collaboration +14
What We're Reading: March 2024 1 month ago | www.greynoise.io
articles attention books curiosity +11
Where are they now? Starring: Atlassian's Confluence CVE-2023-22527 1 month, 2 weeks ago | www.greynoise.io
atlassian confluence cve dead +2

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Engineer

@ Core10 | Nashville, Tennessee, United States - Remote
View on infosec-jobs.com

Security Operations Engineer I

@ Jamf | US Remote
View on infosec-jobs.com

IT Security ISSO Specialist (15.10)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

Compliance Officer

@ Aspire Software | Canada - Remote
View on infosec-jobs.com

Security Operations Center (SOC) - AVP

@ Paytm | Noida, Uttar Pradesh
View on infosec-jobs.com
View more jobs