CVE-2024-3400 - Palo Alto Networks PAN-OS Command Injection Vulnerability

Vulnerability Name

Palo Alto Networks PAN-OS Command Injection Vulnerability

Description

Palo Alto Networks PAN-OS GlobalProtect feature contains a command injection vulnerability that allows an unauthenticated attacker to execute commands with root privileges on the firewall.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply mitigations per vendor instructions as they become available. Otherwise, users with vulnerable versions of affected devices should enable Threat Prevention IDs available from the vendor. See the vendor bulletin for more details and a patch release schedule.

Additional Notes

https://security.paloaltonetworks.com/CVE-2024-3400

https://nvd.nist.gov/vuln/detail/CVE-2024-3400

Related News Articles

Chinese hackers breached National Guard to steal network configurationsJuly 18, 2025

Chinese Hackers Target Taiwan's Semiconductor Sector with Cobalt Strike, Custom BackdoorsJuly 17, 2025

RansomHub Becomes 2024's Top Ransomware Group, Hitting 600+ Organizations GloballyFebruary 14, 2025

Over 2,000 Palo Alto firewalls hacked using recently patched bugsNovember 22, 2024

Cisco bug lets hackers run commands as root on UWRB access pointsNovember 7, 2024