THREAT OPS › CVEs › CVE-2024-3400
CVE-2024-3400 — Palo Alto Networks PAN-OS Command Injection Vulnerability
Palo Alto Networks PAN-OS GlobalProtect feature contains a command injection vulnerability that allows an unauthenticated attacker to execute commands with root privileges on the firewall.
Vulnerability details
- Affected productsPAN-OS
- KEV remediation due2024-04-19
Exploiting threat actors
- Earth LuscaG1006