Skip to content

Palo Alto Critical Vulnerabilities - 20241010003

Overview

Palo Alto have published an advisory regarding multiple vulnerabilities in Palo Alto Networks Expedition. Sucesful exploitation could allow an attacker to read Expedition database contents and arbitrary files, as well as write arbitrary files to temporary storage locations on the Expedition system. Combined, these include information such as usernames, cleartext passwords, device configurations, and device API keys of PAN-OS firewalls.

What is vulnerable?

Product(s) Affected Version(s) CVE # CVSS v4/v3 Severity
Palo Alto Networks Expedition all versions \< 1.2.96 CVE-2024-9463
CVE-2024-9464
CVE-2024-9465
9.9
9.3
9.2
Critical
Critical
Critical

Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe (refer Patch Management):

Reference