all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Zero-Day Alert: Critical Palo Alto Networks PAN-OS Flaw Under Active Attack

Add to bookmarks
April 12, 2024, 8:56 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Palo Alto Networks is warning that a critical flaw impacting its PAN-OS software used in its GlobalProtect gateways is being exploited in the wild.
Tracked as CVE-2024-3400, the issue has a CVSS score of 10.0, indicating maximum severity.
"A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature

alert alto attack command command injection critical critical flaw cve cve-2024 cvss cvss score exploited feature flaw gateways globalprotect injection in the wild issue networks palo palo alto palo alto networks palo alto networks pan-os pan pan-os score severity software under vulnerability warning zero-day

Visit resource

More from thehackernews.com / The Hacker News

New U.K. Law Bans Default Passwords on Smart Devices Starting April 2024 5 hours ago | thehackernews.com
act and telecommunications april bans +23
Google Prevented 2.28 Million Malicious Apps from Reaching Play Store in 2023 18 hours ago | thehackernews.com
access accounts address android +20
China-Linked 'Muddling Meerkat' Hijacks DNS to Map Internet on Global Scale 21 hours ago | thehackernews.com
actor china cloud cloud security +22
Navigating the Threat Landscape: Understanding Exposure Management, Pentesting, Red Teaming and RBVM 1 day ago | thehackernews.com
adoption attackers challenge cyber +21
New R Programming Vulnerability Exposes Projects to Supply Chain Attacks 1 day ago | thehackernews.com
actor attacks code code execution +22
Sandbox Escape Vulnerabilities in Judge0 Expose Systems to Complete Takeover 1 day, 1 hour ago | thehackernews.com
access adversary code code execution +18
Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks 1 day, 21 hours ago | thehackernews.com
access access management attacks availability +16
Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw 2 days, 22 hours ago | thehackernews.com
attack attack chain cobalt cobalt strike +19
Bogus npm Packages Used to Trick Software Developers into Installing Malware 3 days, 5 hours ago | thehackernews.com
backdoor bogus campaign cybersecurity +25

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Engineer

@ Core10 | Nashville, Tennessee, United States - Remote
View on infosec-jobs.com

Security Operations Engineer I

@ Jamf | US Remote
View on infosec-jobs.com

IT Security ISSO Specialist (15.10)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

Compliance Officer

@ Aspire Software | Canada - Remote
View on infosec-jobs.com

Security Operations Center (SOC) - AVP

@ Paytm | Noida, Uttar Pradesh
View on infosec-jobs.com
View more jobs