all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway

Add to bookmarks
April 12, 2024, 7:42 p.m. |

SpiderLabs Blog from Trustwave www.trustwave.com

Overview


command injection vulnerability has been discovered in the GlobalProtect feature within Palo Alto Networks PAN-OS software for specific versions that have distinct feature configurations that may enable a remote, unauthenticated attacker to execute arbitrary code with root privileges on the firewall.

alto arbitrary code attacker code command command injection cve cve-2024 cve-2024-3400 enable feature firewall gateway globalprotect injection may networks os command palo palo alto palo alto networks palo alto networks pan-os pan pan-os privileges root software unauthenticated vulnerability

Visit resource

More from www.trustwave.com / SpiderLabs Blog from Trustwave

Protecting Zion: InfoSec Encryption Concepts and Tips 20 hours ago | www.trustwave.com
blog blog posts can concepts +11
The Invisible Battleground: Essentials of EASM 1 week ago | www.trustwave.com
attack attack surface attack surface management cyber +13
EDR – The Multi-Tool of Security Defenses 1 week ago | www.trustwave.com
blog blog posts can cybersecurity +10
Fake Dialog Boxes to Make Malware More Convincing 1 week, 5 days ago | www.trustwave.com
dialog engagement fake loader +7
The Secret Cipher: Modern Data Loss Prevention Solutions 2 weeks ago | www.trustwave.com
automated can cipher data +18
CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway 2 weeks, 3 days ago | www.trustwave.com
alto arbitrary code attacker code +25
CNAPP, CSPM, CIEM, CWPP – Oh My! 3 weeks ago | www.trustwave.com
alphabet ciem cnapp cspm +9
Phishing Deception - Suspended Domains Reveal Malicious Payload for Latin American Region 3 weeks, 3 days ago | www.trustwave.com
american attachment campaign deception +12
Zero Trust Essentials 4 weeks ago | www.trustwave.com
blog blog posts can cybersecurity +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Architect - Identity and Access Management Architect (80-100% | Hybrid option)

@ Swiss Re | Madrid, M, ES
View on infosec-jobs.com

Alternant - Consultant HSE (F-H-X)

@ Bureau Veritas Group | MULHOUSE, Grand Est, FR
View on infosec-jobs.com

Senior Risk/Cyber Security Analyst

@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
View on infosec-jobs.com

Offensive Security Engineer (University Grad)

@ Meta | Bellevue, WA | Menlo Park, CA | Seattle, WA | Washington, DC | New York City
View on infosec-jobs.com

Senior IAM Security Engineer

@ Norfolk Southern | Atlanta, GA, US, 30308
View on infosec-jobs.com
View more jobs