Skip to main content
All vulnerabilities
CVE-2024-9474 Known ransomware use

Palo Alto Networks PAN-OS Management Interface OS Command Injection Vulnerability

Palo Alto NetworksPAN-OS

Added to KEV catalog
18 November 2024
Federal remediation due date
9 December 2024
Weakness classification (CWE)
CWE-77

CISA Description

Palo Alto Networks PAN-OS contains an OS command injection vulnerability that allows for privilege escalation through the web-based management interface for several PAN products, including firewalls and VPN concentrators.

Required action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. Additionally, the management interfaces for affected devices should not be exposed to untrusted networks, including the internet.

Notes

https://security.paloaltonetworks.com/CVE-2024-9474 ; https://nvd.nist.gov/vuln/detail/CVE-2024-9474

Confirm Your Exposure

Is this vulnerability present in your environment?

CRS delivers independent VAPT assessments that identify exactly which known-exploited vulnerabilities exist in your network, applications, and infrastructure.

Explore VAPT Services