CISA has warned that vulnerabilities in Palo Alto Networks' firewall management software are actively being exploited, leading to potential risks for users with exposed interfaces.
Palo Alto Networks reported that, following the exploits against their Expedition tool, they are seeing attacks on a limited number of firewall management interfaces exposed to the internet.
CISA's alert comes after a previous warning about another exploit, where the vulnerability allowed for administration account takeover with a high severity CVSS score of 9.3.
The addition of CVE-2024-5910 to the KEV catalog obligates federal agencies to take immediate actions to mitigate the associated risks.
Collection
[
|
...
]