Palo Alto Networks has released critical updates to address two zero-day vulnerabilities in their PAN-OS, with the first having a 9.3 severity rating, urging urgent user action.
CVE-2024-0012 is an authentication bypass vulnerability with a critical severity rating, and users are advised to upgrade to patched versions of PAN-OS without delay.
The second vulnerability, CVE-2024-9474, is a medium-severity privilege escalation bug, allowing attackers to gain admin access through the PAN-OS management interface.
Palo Alto Networks warns that immediate action is needed to prevent exploitation, including revoking public access to management interfaces and restricting to internal IPs.
Collection
[
|
...
]