Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Networks

kroll

CVE-2024-3400: Zero-Day Remote Code Execution Vulnerability Exploited to Attack PAN-OS

Apr 23, 2024 By Kroll In Kroll
A command injection vulnerability, being tracked as CVE-2024-3400, was recently discovered in the GlobalProtect feature of Palo Alto Networks PAN-OS software. This vulnerability has a CVSS score of 10 (Critical) and is actively being exploited in the wild. It impacts versions PAN-OS 120.2, PAN-OS 11.0 and PAN-OS 11.1. If exploited on vulnerable PAN-OS versions and distinct feature configurations, an unauthenticated attacker could execute arbitrary code with root privileges on the firewall.
Read Post
cato networks

CVE-2024-3400: Critical Palo Alto PAN-OS Command Injection Vulnerability Exploited by Sysrv Botnet's XMRig Malware

Apr 21, 2024 By Vitaly Simonovich In Cato Networks
On Friday, April 12, 2024, Palo Alto Networks PAN-OS was found to have an OS command injection vulnerability (CVE-2024-3400). Due to its severity, CISA added it to its Known Exploited Vulnerabilities Catalog. Shortly after disclosure, a PoC was published.
Read Post
netskope

Harness Netskope Steering APIs for Scalable SD-WAN Deployments

Apr 19, 2024 By Aditya Sahu In Netskope
In large-scale SD-WAN deployments, both enterprises and Managed Security Service Providers (MSSPs) place a high priority on ensuring that SD-WAN CPEs seamlessly integrate with the nearest Netskope NewEdge Network Point of Presence (PoP). Automating this integration process is crucial as it not only saves considerable time but also boosts business agility.
Read Post
securitysenses

How to Evaluate if Your Business Needs a VPN or RDP? What's the Difference?

Apr 18, 2024 By SecuritySenses In SecuritySenses
The need for secure remote access solutions has increased in today's digital era. About two-thirds of businesses have had their data stolen because employees work from home. Four out of five companies have seen more email scams since people started working remotely. Almost 70% of businesses think they'll face more cyber problems because so many people work from home now.
Read Post
Forward Networks

Forward Networks Achieves SOC 2 Type II Compliance, Reiterating Commitment to Data Security and Transparency

Apr 17, 2024 By Forward Networks In Forward Networks
Forward Networks announced today that it has successfully achieved System and Organization Controls (SOC) 2 Type II Compliance attestation conducted by an independent third party. The completion of the audit demonstrates Forward Networks' long-term commitment to providing its customers transparency, privacy, and data security. Forward Networks achieved SOC 2 Type I Compliance in July of last year.
Read Post
securitysenses

Is decentralized Internet the future?

Apr 17, 2024 By SecuritySenses In SecuritySenses
The Internet has come a long way since its invention, and activities on the Internet have become an important part of our daily lives. However, the traditional approach to Internet hosting has remained centralized and the entire technology industry is concerned about the power of data concentrated in the hands of the leading tech companies, including Google, Amazon, Microsoft, etc. Therefore, in the last few years, the decentralization process has become a new trend offering improved security from cybercrimes, privacy, and availability of online services. So, is decentralized Internet the future?
Read Post
Arctic Wolf

CVE-2024-3400: Critical Vulnerability in GlobalProtect Feature of PAN-OS being Actively Exploited

Apr 15, 2024 By Andres Ramos In Arctic Wolf
On April 12, 2024, Palo Alto Networks published a security advisory detailing an actively exploited maximum severity vulnerability (CVE-2024-3400, CVSS: 10.0) affecting the GlobalProtect feature of PAN-OS. This vulnerability affects PAN-OS 10.2, PAN-OS 11.0, and PAN-OS 11.1 firewalls when configurations for both GlobalProtect gateway and device telemetry are enabled. An unauthenticated remote threat actor can exploit this vulnerability to execute arbitrary code with root privileges on the firewall.
Read Post
Arctic Wolf

CVE-2024-3400: Follow Up: Patches Released for Actively Exploited Critical Vulnerability in GlobalProtect Feature of PAN-OS

Apr 15, 2024 By Andres Ramos In Arctic Wolf
On April 14, 2024, Palo Alto Networks (PAN) released hotfixes to address the maximum severity (CVSS: 10) vulnerability, CVE-2024-3400, affecting the GlobalProtect Feature of PAN-OS. An unauthenticated remote threat actor can exploit this vulnerability to execute arbitrary code with root privileges on the firewall. Volexity identified CVE-2024-3400 as a zero-day vulnerability and found that the threat actor UTA0218 was implanting a custom Python backdoor on firewall devices.
Read Post
centripetal

Palo Alto Networks Vulnerability: CVE-2024-3400

Apr 15, 2024 By Lauren Farrell In Centripetal
On April 12th, Palo Alto Networks released a CVE advisory for CVE-2024-3400, a critical vulnerability identified in the GlobalProtect Gateway feature of PAN-OS, the operating system for Palo Alto Networks firewalls. This command injection vulnerability allows unauthenticated attackers to execute arbitrary commands with root privileges on the affected devices.
Read Post
Subscribe to Networks

Copyright © 2024 OpsMatters™. All rights reserved.