EXECUTIVE SUMMARY:
A critical flaw, tracked as CVE-2024-3400, has been identified in Palo Alto Networks PAN-OS software, specifically impacting GlobalProtect gateways. By indicating maximum severity, this vulnerability allows unauthenticated attackers to execute arbitrary code with root privileges on affected firewalls. Provided they have configurations for both GlobalProtect gateway and device telemetry enabled. Palo Alto Networks has acknowledged a limited number of attacks leveraging this exploit. In response, customers are advised to mitigate the threat. This development underscores the growing trend of threat actors exploiting zero-day flaws in various network security solutions for malicious activities, highlighting the urgent need for robust measures and prompt patching of vulnerable systems.
Recommendation:
REFERENCES:
The following reports contain further technical details:
https://thehackernews.com/2024/04/zero-day-alert-critical-palo-alto.html