logo

CVE-2024-0012 - Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability

CVE-2024-0012

Palo Alto Networks | PAN-OS

  • Date Added:
  • 2024-11-18
  • Due Date:
  • 2024-12-09
Vulnerability Name

Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability

Description

Palo Alto Networks PAN-OS contains an authentication bypass vulnerability in the web-based management interface for several PAN-OS products, including firewalls and VPN concentrators.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. Additionally, management interface for affected devices should not be exposed to untrusted networks, including the internet.

Additional Notes
https://security.paloaltonetworks.com/CVE-2024-0012 ; https://nvd.nist.gov/vuln/detail/CVE-2024-0012
Related News Articles

Free security scan for your website