1. Home
  2. Vulnerabilities
  3. CVE-2024-3400
Known Exploited Vulnerability
10.0
CRITICAL CVSS 3.1
CVE-2024-3400
Palo Alto Networks PAN-OS Command Injection Vulnerability - [Actively Exploited]
Description

A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.

INFO

Published Date :

April 12, 2024, 8:15 a.m.

Last Modified :

Nov. 29, 2024, 4:47 p.m.

Remotely Exploit :

Yes !

Source :

[email protected]
CISA Notification
CISA KEV (Known Exploited Vulnerabilities)

For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild.

Description :

Palo Alto Networks PAN-OS GlobalProtect feature contains a command injection vulnerability that allows an unauthenticated attacker to execute commands with root privileges on the firewall.

Required Action :

Apply mitigations per vendor instructions as they become available. Otherwise, users with vulnerable versions of affected devices should enable Threat Prevention IDs available from the vendor. See the vendor bulletin for more details and a patch release schedule.

Notes :

https://security.paloaltonetworks.com/CVE-2024-3400 ; https://nvd.nist.gov/vuln/detail/CVE-2024-3400

Affected Products

The following products are affected by CVE-2024-3400 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Paloaltonetworks pan-os
2 Paloaltonetworks prisma_access
: Total Affected Vendor : 1 | Products : 2
CVSS Scores
The Common Vulnerability Scoring System is a standardized framework for assessing the severity of vulnerabilities in software and systems. We collect and displays CVSS scores from various sources for each CVE.
Score Version Severity Vector Exploitability Score Impact Score Source
CVSS 3.1 CRITICAL [email protected]
CVSS 3.1 CRITICAL [email protected]
Solution
This information is provided by the 3rd party feeds.
  • Apply update from vendor advisory.
Public PoC/Exploit Available at Github

CVE-2024-3400 has a 114 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2024-3400.

URL Resource
https://security.paloaltonetworks.com/CVE-2024-3400 Vendor Advisory
https://unit42.paloaltonetworks.com/cve-2024-3400/ Exploit Vendor Advisory
https://www.paloaltonetworks.com/blog/2024/04/more-on-the-pan-os-cve/ Technical Description Vendor Advisory
https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/ Exploit Third Party Advisory
https://security.paloaltonetworks.com/CVE-2024-3400 Vendor Advisory
https://unit42.paloaltonetworks.com/cve-2024-3400/ Exploit Vendor Advisory
https://www.paloaltonetworks.com/blog/2024/04/more-on-the-pan-os-cve/ Technical Description Vendor Advisory
https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/ Exploit Third Party Advisory
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2024-3400 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2024-3400 weaknesses.

CAPEC-3: Using Leading 'Ghost' Character Sequences to Bypass Input Filters Using Leading 'Ghost' Character Sequences to Bypass Input Filters CAPEC-7: Blind SQL Injection Blind SQL Injection CAPEC-8: Buffer Overflow in an API Call Buffer Overflow in an API Call CAPEC-9: Buffer Overflow in Local Command-Line Utilities Buffer Overflow in Local Command-Line Utilities CAPEC-10: Buffer Overflow via Environment Variables Buffer Overflow via Environment Variables CAPEC-13: Subverting Environment Variable Values Subverting Environment Variable Values CAPEC-14: Client-side Injection-induced Buffer Overflow Client-side Injection-induced Buffer Overflow CAPEC-22: Exploiting Trust in Client Exploiting Trust in Client CAPEC-23: File Content Injection File Content Injection CAPEC-24: Filter Failure through Buffer Overflow Filter Failure through Buffer Overflow CAPEC-28: Fuzzing Fuzzing CAPEC-31: Accessing/Intercepting/Modifying HTTP Cookies Accessing/Intercepting/Modifying HTTP Cookies CAPEC-42: MIME Conversion MIME Conversion CAPEC-43: Exploiting Multiple Input Interpretation Layers Exploiting Multiple Input Interpretation Layers CAPEC-45: Buffer Overflow via Symbolic Links Buffer Overflow via Symbolic Links CAPEC-46: Overflow Variables and Tags Overflow Variables and Tags CAPEC-47: Buffer Overflow via Parameter Expansion Buffer Overflow via Parameter Expansion CAPEC-52: Embedding NULL Bytes Embedding NULL Bytes CAPEC-53: Postfix, Null Terminate, and Backslash Postfix, Null Terminate, and Backslash CAPEC-63: Cross-Site Scripting (XSS) Cross-Site Scripting (XSS) CAPEC-64: Using Slashes and URL Encoding Combined to Bypass Validation Logic Using Slashes and URL Encoding Combined to Bypass Validation Logic CAPEC-67: String Format Overflow in syslog() String Format Overflow in syslog() CAPEC-71: Using Unicode Encoding to Bypass Validation Logic Using Unicode Encoding to Bypass Validation Logic CAPEC-72: URL Encoding URL Encoding CAPEC-73: User-Controlled Filename User-Controlled Filename CAPEC-78: Using Escaped Slashes in Alternate Encoding Using Escaped Slashes in Alternate Encoding CAPEC-79: Using Slashes in Alternate Encoding Using Slashes in Alternate Encoding CAPEC-80: Using UTF-8 Encoding to Bypass Validation Logic Using UTF-8 Encoding to Bypass Validation Logic CAPEC-81: Web Server Logs Tampering Web Server Logs Tampering CAPEC-83: XPath Injection XPath Injection CAPEC-85: AJAX Footprinting AJAX Footprinting CAPEC-88: OS Command Injection OS Command Injection CAPEC-101: Server Side Include (SSI) Injection Server Side Include (SSI) Injection CAPEC-104: Cross Zone Scripting Cross Zone Scripting CAPEC-108: Command Line Execution through SQL Injection Command Line Execution through SQL Injection CAPEC-109: Object Relational Mapping Injection Object Relational Mapping Injection CAPEC-110: SQL Injection through SOAP Parameter Tampering SQL Injection through SOAP Parameter Tampering CAPEC-120: Double Encoding Double Encoding CAPEC-135: Format String Injection Format String Injection CAPEC-136: LDAP Injection LDAP Injection CAPEC-153: Input Data Manipulation Input Data Manipulation CAPEC-182: Flash Injection Flash Injection CAPEC-209: XSS Using MIME Type Mismatch XSS Using MIME Type Mismatch CAPEC-230: Serialized Data with Nested Payloads Serialized Data with Nested Payloads CAPEC-231: Oversized Serialized Data Payloads Oversized Serialized Data Payloads CAPEC-250: XML Injection XML Injection CAPEC-261: Fuzzing for garnering other adjacent user/sensitive data Fuzzing for garnering other adjacent user/sensitive data CAPEC-267: Leverage Alternate Encoding Leverage Alternate Encoding CAPEC-473: Signature Spoof Signature Spoof CAPEC-588: DOM-Based XSS DOM-Based XSS CAPEC-664: Server Side Request Forgery Server Side Request Forgery CAPEC-15: Command Delimiters Command Delimiters CAPEC-40: Manipulating Writeable Terminal Devices Manipulating Writeable Terminal Devices CAPEC-43: Exploiting Multiple Input Interpretation Layers Exploiting Multiple Input Interpretation Layers CAPEC-75: Manipulating Writeable Configuration Files Manipulating Writeable Configuration Files CAPEC-76: Manipulating Web Input to File System Calls Manipulating Web Input to File System Calls CAPEC-136: LDAP Injection LDAP Injection CAPEC-183: IMAP/SMTP Command Injection IMAP/SMTP Command Injection CAPEC-248: Command Injection Command Injection

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Profile Photo
DharunTeja-2023/AI-Cyber-Threat-Intelligence-Platform

This project is an AI-powered CTI platform that gathers and analyzes threat intelligence from diverse sources, providing real-time, actionable insights to help organizations proactively identify and mitigate cyber threats.

Python HTML CSS JavaScript

Updated: 17 hours, 44 minutes ago
0 stars 0 fork 0 watcher
Born at : Sept. 16, 2025, 1:43 a.m. This repo has been linked 1 different CVEs too.
Profile Photo
eswar152319/eswar

AI-Powered Cyber Threat Intelligence Platform

Updated: 5 days, 6 hours ago
1 stars 0 fork 0 watcher
Born at : Sept. 11, 2025, 10:08 a.m. This repo has been linked 1 different CVEs too.
Profile Photo
0xAj-Krishna/biggest-hack

None

Updated: 4 days, 13 hours ago
0 stars 0 fork 0 watcher
Born at : Sept. 9, 2025, 6:09 a.m. This repo has been linked 24 different CVEs too.
Profile Photo
Veridano/veridano-mcp-server

None

Python

Updated: 6 days, 19 hours ago
0 stars 0 fork 0 watcher
Born at : Sept. 1, 2025, 1:54 p.m. This repo has been linked 1 different CVEs too.
Profile Photo
zhanpengliu-tencent/medium-cve

None

Updated: 1 month ago
0 stars 0 fork 0 watcher
Born at : Aug. 15, 2025, 9:07 a.m. This repo has been linked 310 different CVEs too.
Profile Photo
Cyb3rTim/Cyber-Threat-Intelligence-Dashboard

A professional SOC-style cyber threat intelligence dashboard built using React and Express.js. This project simulates real-time tracking of APT27 (aka Silk Typhoon) activities using verified IOCs, CVEs, and MITRE ATT&CK mappings.

Updated: 1 month, 1 week ago
0 stars 0 fork 0 watcher
Born at : Aug. 7, 2025, 11:37 a.m. This repo has been linked 3 different CVEs too.
Profile Photo
0day404/HV-2024-POC

护网2024-POC收录备份

Updated: 1 month, 1 week ago
0 stars 0 fork 0 watcher
Born at : Aug. 4, 2025, 1:25 p.m. This repo has been linked 119 different CVEs too.
Profile Photo
shreyxploit/ThreatLens

ThreatLens : It is an automated CVE intelligence gathering system that crawls the open web to collect, analyze, and report comprehensive threat intelligence for any given CVE identifier.

Python Shell

Updated: 1 month, 1 week ago
0 stars 0 fork 0 watcher
Born at : Aug. 3, 2025, 12:41 p.m. This repo has been linked 1 different CVEs too.
Profile Photo
lodetomasi/zero-day-llm-ensemble

Multi-agent LLM ensemble for automated zero-day vulnerability detection. Thompson Sampling optimization, 21+ evidence sources, 5 specialized agents.

ensemble-learning llm multi-agent-system security threat-intelligence vulnerability-detection zero-day

Python

Updated: 1 month, 1 week ago
0 stars 0 fork 0 watcher
Born at : July 23, 2025, 3:05 p.m. This repo has been linked 3 different CVEs too.
Profile Photo
febrian96r/Cybersecurity-Portfolio

None

Updated: 1 month, 3 weeks ago
0 stars 0 fork 0 watcher
Born at : July 20, 2025, 7:43 a.m. This repo has been linked 1 different CVEs too.
Profile Photo
febrian96r/febrian96r

None

Updated: 1 month, 3 weeks ago
0 stars 0 fork 0 watcher
Born at : July 20, 2025, 7:35 a.m. This repo has been linked 1 different CVEs too.
Profile Photo
Just-Hack-For-Fun/NOPTrace-Configs

符合 OpenForensicRules 数字取证与应急响应信息采集规则格式规范的配置文件仓库

Updated: 1 month, 4 weeks ago
14 stars 0 fork 0 watcher
Born at : July 7, 2025, 7:41 a.m. This repo has been linked 1 different CVEs too.
Profile Photo
Lern0n/Lernon-POC

备份的漏洞库,3月开始我们来维护

Updated: 2 months ago
2 stars 0 fork 0 watcher
Born at : June 30, 2025, 9:14 a.m. This repo has been linked 216 different CVEs too.
Profile Photo
barkandbite/iranian-apt-detection

None

Shell

Updated: 2 months ago
0 stars 0 fork 0 watcher
Born at : June 25, 2025, 1:50 p.m. This repo has been linked 5 different CVEs too.
Profile Photo
oLy0/Vulnerability

None

Updated: 3 months ago
0 stars 0 fork 0 watcher
Born at : June 15, 2025, 2:32 a.m. This repo has been linked 216 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2024-3400 vulnerability anywhere in the article.

  • CybersecurityNews
Nessus vs Metasploit Comparison: How To Exploit Vulnerabilities Using These Powerful Tools

The cybersecurity landscape demands sophisticated tools to identify and exploit vulnerabilities effectively, with Nessus vs Metasploit representing one of the most powerful combinations in modern pene ... Read more

Published Date: Sep 16, 2025 (9 hours, 5 minutes ago)
  • CybersecurityNews
Chinese APT Hackers Exploit Router Vulnerabilities to Infiltrate Enterprise Environments

Over the past several years, a concerted campaign by Chinese state-sponsored Advanced Persistent Threat (APT) groups has exploited critical vulnerabilities in enterprise-grade routers to establish lon ... Read more

Published Date: Sep 04, 2025 (1 week, 5 days ago)
  • SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 35

The Good | Interpol Cracks Down on Cybercrime as U.S. Sanctions North Korean IT Scheme Interpol announced the arrest of over 1200 suspects in Operation Serengeti 2.0, a three-month crackdown on cyberc ... Read more

Published Date: Aug 29, 2025 (2 weeks, 4 days ago)
  • SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 35

The Good | Interpol Cracks Down on Cybercrime as U.S. Sanctions North Korean IT Scheme Interpol announced the arrest of over 1200 suspects in Operation Serengeti 2.0, a three-month crackdown on cyberc ... Read more

Published Date: Aug 29, 2025 (2 weeks, 4 days ago)
  • The Hacker News
Salt Typhoon Exploits Cisco, Ivanti, Palo Alto Flaws to Breach 600 Organizations Worldwide

The China-linked advanced persistent threat (APT) actor known as Salt Typhoon has continued its attacks targeting networks across the world, including organizations in the telecommunications, governme ... Read more

Published Date: Aug 28, 2025 (2 weeks, 5 days ago)
  • Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
UK and US Blame Three Chinese Tech Firms for Global Cyberattacks

A coalition of international cybersecurity agencies led by the UK’s National Cyber Security Centre (NCSC) has publicly linked three China-based technology companies to a long-running global cyberattac ... Read more

Published Date: Aug 28, 2025 (2 weeks, 5 days ago)
  • CybersecurityNews
CISA Publish Hunting and Mitigation Guide to Defend Networks from Chinese State-Sponsored Actors

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), alongside the NSA, FBI, and a broad coalition of international partners, has released a comprehensive cybersecurity advisory detailing ... Read more

Published Date: Aug 28, 2025 (2 weeks, 5 days ago)
  • The Register
If you thought China's Salt Typhoon was booted off critical networks, think again

China's Salt Typhoon cyberspies continue their years-long hacking campaign targeting critical industries around the world, according to a joint security alert from cyber and law enforcement agencies a ... Read more

Published Date: Aug 28, 2025 (2 weeks, 5 days ago)
  • Daily CyberSecurity
An Espionage System: NSA, CISA, & Partners Expose Chinese APT Groups

In a multinational alert, the U.S. National Security Agency (NSA), CISA, FBI, and partners from more than a dozen allied nations have released a Joint Cybersecurity Advisory (CSA) exposing how Chinese ... Read more

Published Date: Aug 28, 2025 (2 weeks, 5 days ago)
  • BleepingComputer
Global Salt Typhoon hacking campaigns linked to Chinese tech firms

The U.S. National Security Agency (NSA), the UK's National Cyber Security Centre (NCSC), and partners from over a dozen countries have linked the Salt Typhoon global hacking campaigns to three China-b ... Read more

Published Date: Aug 27, 2025 (2 weeks, 6 days ago)
  • Daily CyberSecurity
ByteDance’s Trae IDE Under Fire: AI Coding Tool Caught Telemetry Spying Even After Opt-Out

Trae IDE, an AI-powered programming tool and integrated development environment (IDE) developed by ByteDance, has recently come under scrutiny on GitHub, where developers have raised concerns regardin ... Read more

Published Date: Jul 29, 2025 (1 month, 2 weeks ago)
  • BleepingComputer
Chinese hackers breached National Guard to steal network configurations

The Chinese state-sponsored hacking group known as Salt Typhoon breached and remained undetected in a U.S. Army National Guard network for nine months in 2024, stealing network configuration files and ... Read more

Published Date: Jul 17, 2025 (1 month, 4 weeks ago)
  • The Hacker News
Chinese Hackers Target Taiwan's Semiconductor Sector with Cobalt Strike, Custom Backdoors

The Taiwanese semiconductor industry has become the target of spear-phishing campaigns undertaken by three Chinese state-sponsored threat actors. "Targets of these campaigns ranged from organizations ... Read more

Published Date: Jul 17, 2025 (1 month, 4 weeks ago)
  • Daily CyberSecurity
Kaspersky Report Reveals Growing Threat from Old Exploits and OS Vulnerabilities in Q1 2025

Kaspersky’s latest “Exploits and vulnerabilities in Q1 2025” shows that attackers are doubling down on aging exploits, platform-specific weaknesses, and mismanaged updates. With over 9,700 vulnerabili ... Read more

Published Date: Jun 03, 2025 (3 months, 1 week ago)
  • security.nl
Mandiant: kwetsbaarheden in vpn-software vaakst aangevallen vorig jaar

Kwetsbaarheden in vpn-software blijven een zeer populair doelwit van aanvallers, zo stelt Mandiant. De helft van alle cyberincidenten die het securitybedrijf vorig jaar onderzocht begonnen via kwetsba ... Read more

Published Date: Apr 28, 2025 (4 months, 2 weeks ago)
  • Help Net Security
Understanding 2024 cyber attack trends

Mandiant has released the M-Trends 2025 report, which outlines global cyber attack trends based on their own incident response engagements from 2024. Key trends and insights In 2024, Mandiant handled ... Read more

Published Date: Apr 24, 2025 (4 months, 3 weeks ago)
  • security.nl
FBI: ransomware-aanvallen via jaren oude Citrix-kwetsbaarheden

Aanvallers maken nog altijd gebruik van jaren oude Citrix-kwetsbaarheden om organisaties met ransomware te infecteren, zo stelt de FBI. Ook oude kwetsbaarheden in firewalls van Palo Alto Networks en B ... Read more

Published Date: Apr 04, 2025 (5 months, 1 week ago)
  • Cyber Security News
Hackers Scanning From 24,000 IPs to Gain Access to Palo Alto Networks GlobalProtect Portals

Researchers have detected an alarming surge in malicious scanning activity targeting Palo Alto Networks’ GlobalProtect VPN portals. Over a 30-day period, nearly 24,000 unique IP addresses have attempt ... Read more

Published Date: Apr 01, 2025 (5 months, 2 weeks ago)
  • Dark Reading
China's Silk Typhoon APT Shifts to IT Supply Chain Attacks

Source: Chebakalex7 via ShutterstockThe China-backed cyber-espionage group known as "Silk Typhoon" has begun targeting organizations in the IT supply chain to gain access to their downstream customers ... Read more

Published Date: Mar 05, 2025 (6 months, 1 week ago)
  • BleepingComputer
Silk Typhoon hackers now target IT supply chains to breach networks

Microsoft warns that Chinese cyber-espionage threat group 'Silk Typhoon' has shifted its tactics, now targeting remote management tools and cloud services in supply chain attacks that give them access ... Read more

Published Date: Mar 05, 2025 (6 months, 1 week ago)

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2024-3400 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • Modified Analysis by [email protected]

    Nov. 29, 2024

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h13:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h16:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h3:*:*:*:*:*:* OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1:*:*:*:*:*:*
  • CVE Modified by af854a3a-2127-422b-91ae-364da2661108

    Nov. 21, 2024

    Action Type Old Value New Value
    Added Reference https://security.paloaltonetworks.com/CVE-2024-3400
    Added Reference https://unit42.paloaltonetworks.com/cve-2024-3400/
    Added Reference https://www.paloaltonetworks.com/blog/2024/04/more-on-the-pan-os-cve/
    Added Reference https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/
  • CVE Modified by [email protected]

    Jun. 04, 2024

    Action Type Old Value New Value
  • Reanalysis by [email protected]

    May. 29, 2024

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1:*:*:*:*:*:* OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h13:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h16:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h3:*:*:*:*:*:*
  • Reanalysis by [email protected]

    May. 21, 2024

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1:*:*:*:*:*:* OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1:*:*:*:*:*:*
  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • Modified Analysis by [email protected]

    Apr. 23, 2024

    Action Type Old Value New Value
    Changed Reference Type https://www.paloaltonetworks.com/blog/2024/04/more-on-the-pan-os-cve/ No Types Assigned https://www.paloaltonetworks.com/blog/2024/04/more-on-the-pan-os-cve/ Technical Description, Vendor Advisory
    Changed CPE Configuration OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:*:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:*:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:*:*:*:*:*:*:* OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1:*:*:*:*:*:*
  • CVE Modified by [email protected]

    Apr. 19, 2024

    Action Type Old Value New Value
    Added Reference Palo Alto Networks, Inc. https://www.paloaltonetworks.com/blog/2024/04/more-on-the-pan-os-cve/ [No types assigned]
  • CVE Modified by [email protected]

    Apr. 18, 2024

    Action Type Old Value New Value
    Changed Description A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability. A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.
    Added CWE Palo Alto Networks, Inc. CWE-20
  • CVE CISA KEV Update by 9119a7d8-5eab-497f-8521-727c672e3725

    Apr. 18, 2024

    Action Type Old Value New Value
    Changed Required Action Apply mitigations per vendor instructions as they become available. Otherwise, users with vulnerable versions of affected devices should enable Threat Prevention Threat ID 95187 if that is available, or disable device telemetry until patches are available from the vendor. See the vendor bulletin for more details and a patch release schedule. Apply mitigations per vendor instructions as they become available. Otherwise, users with vulnerable versions of affected devices should enable Threat Prevention IDs available from the vendor. See the vendor bulletin for more details and a patch release schedule.
  • CVE CISA KEV Update by 9119a7d8-5eab-497f-8521-727c672e3725

    Apr. 16, 2024

    Action Type Old Value New Value
    Changed Required Action Users of affected devices should enable Threat Prevention Threat ID 95187 if that is available, otherwise, disable device telemetry until patches are available from the vendor, per vendor instructions. Apply mitigations per vendor instructions as they become available. Otherwise, users with vulnerable versions of affected devices should enable Threat Prevention Threat ID 95187 if that is available, or disable device telemetry until patches are available from the vendor. See the vendor bulletin for more details and a patch release schedule.
  • Initial Analysis by [email protected]

    Apr. 15, 2024

    Action Type Old Value New Value
    Added CVSS V3.1 NIST AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
    Changed Reference Type https://security.paloaltonetworks.com/CVE-2024-3400 No Types Assigned https://security.paloaltonetworks.com/CVE-2024-3400 Vendor Advisory
    Changed Reference Type https://unit42.paloaltonetworks.com/cve-2024-3400/ No Types Assigned https://unit42.paloaltonetworks.com/cve-2024-3400/ Exploit, Vendor Advisory
    Changed Reference Type https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/ No Types Assigned https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/ Exploit, Third Party Advisory
    Added CWE NIST CWE-77
    Added CPE Configuration OR *cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:*:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:*:*:*:*:*:*:* *cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:*:*:*:*:*:*:*
  • CVE Modified by [email protected]

    Apr. 15, 2024

    Action Type Old Value New Value
    Changed Description A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Fixes for PAN-OS 10.2, PAN-OS 11.0, and PAN-OS 11.1 are in development and are expected to be released by April 14, 2024. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability. All other versions of PAN-OS are also not impacted. A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.
    Added Reference Palo Alto Networks, Inc. https://unit42.paloaltonetworks.com/cve-2024-3400/ [No types assigned]
    Added Reference Palo Alto Networks, Inc. https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/ [No types assigned]
  • CVE CISA KEV Update by 9119a7d8-5eab-497f-8521-727c672e3725

    Apr. 13, 2024

    Action Type Old Value New Value
    Added Vulnerability Name Palo Alto Networks PAN-OS Command Injection Vulnerability
    Added Date Added 2024-04-12
    Added Due Date 2024-04-19
    Added Required Action Users of affected devices should enable Threat Prevention Threat ID 95187 if that is available, otherwise, disable device telemetry until patches are available from the vendor, per vendor instructions.
  • CVE Modified by [email protected]

    Apr. 12, 2024

    Action Type Old Value New Value
    Removed CVSS V3.1 Palo Alto Networks, Inc. AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    Added CVSS V3.1 Palo Alto Networks, Inc. AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • CVE Received by [email protected]

    Apr. 12, 2024

    Action Type Old Value New Value
    Added Description A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Fixes for PAN-OS 10.2, PAN-OS 11.0, and PAN-OS 11.1 are in development and are expected to be released by April 14, 2024. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability. All other versions of PAN-OS are also not impacted.
    Added Reference Palo Alto Networks, Inc. https://security.paloaltonetworks.com/CVE-2024-3400 [No types assigned]
    Added CWE Palo Alto Networks, Inc. CWE-77
    Added CVSS V3.1 Palo Alto Networks, Inc. AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
Vulnerability Scoring Details
Base CVSS Score: 10
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact