THREATOPS
THREAT OPSCVEs › CVE-2024-9474

CVE-2024-9474 — Palo Alto Networks PAN-OS Management Interface OS Command Injection Vulnerability

CISA KEVExploited: confirmedPalo Alto Networks

Palo Alto Networks PAN-OS contains an OS command injection vulnerability that allows for privilege escalation through the web-based management interface for several PAN products, including firewalls and VPN concentrators.

Vulnerability details