Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2024-3400

A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall.

Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.

  • Published: Apr 12, 2024
  • Updated: Apr 19, 2024
  • CVE: CVE-2024-3400
  • Severity: Critical
  • Exploit:

CVSS v3:

  • Severity: Critical
  • Score: 10
  • AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWEs:

OWASP TOP 10:

Software From Fixed in
paloaltonetworks / pan-os 11.0.0 11.0.0.x
paloaltonetworks / pan-os 10.2.0 10.2.0.x
paloaltonetworks / pan-os 11.1.0 11.1.0.x
paloaltonetworks / pan-os 10.2.7-h6 10.2.7-h6.x
paloaltonetworks / pan-os 10.2.2 10.2.2.x
paloaltonetworks / pan-os 10.2.2-h1 10.2.2-h1.x
paloaltonetworks / pan-os 10.2.2-h2 10.2.2-h2.x
paloaltonetworks / pan-os 10.2.2-h4 10.2.2-h4.x
paloaltonetworks / pan-os 10.2.6 10.2.6.x
paloaltonetworks / pan-os 10.2.6-h1 10.2.6-h1.x
paloaltonetworks / pan-os 10.2.5 10.2.5.x
paloaltonetworks / pan-os 10.2.5-h1 10.2.5-h1.x
paloaltonetworks / pan-os 10.2.5-h4 10.2.5-h4.x
paloaltonetworks / pan-os 10.2.3 10.2.3.x
paloaltonetworks / pan-os 10.2.3-h11 10.2.3-h11.x
paloaltonetworks / pan-os 10.2.3-h12 10.2.3-h12.x
paloaltonetworks / pan-os 10.2.3-h2 10.2.3-h2.x
paloaltonetworks / pan-os 10.2.3-h4 10.2.3-h4.x
paloaltonetworks / pan-os 10.2.3-h9 10.2.3-h9.x
paloaltonetworks / pan-os 10.2.4 10.2.4.x
paloaltonetworks / pan-os 10.2.4-h10 10.2.4-h10.x
paloaltonetworks / pan-os 10.2.4-h2 10.2.4-h2.x
paloaltonetworks / pan-os 10.2.4-h3 10.2.4-h3.x
paloaltonetworks / pan-os 10.2.4-h4 10.2.4-h4.x
paloaltonetworks / pan-os 10.2.7-h3 10.2.7-h3.x
paloaltonetworks / pan-os 10.2.7-h1 10.2.7-h1.x
paloaltonetworks / pan-os 10.2.7 10.2.7.x
paloaltonetworks / pan-os 10.2.1-h1 10.2.1-h1.x
paloaltonetworks / pan-os 10.2.1 10.2.1.x
paloaltonetworks / pan-os 10.2.0-h2 10.2.0-h2.x
paloaltonetworks / pan-os 10.2.0-h1 10.2.0-h1.x
paloaltonetworks / pan-os 10.2.9 10.2.9.x
paloaltonetworks / pan-os 11.1.1 11.1.1.x
paloaltonetworks / pan-os 11.0.2 11.0.2.x
paloaltonetworks / pan-os 11.0.2-h1 11.0.2-h1.x
paloaltonetworks / pan-os 11.0.2-h2 11.0.2-h2.x
paloaltonetworks / pan-os 11.1.0-h1 11.1.0-h1.x
paloaltonetworks / pan-os 11.1.0-h2 11.1.0-h2.x
paloaltonetworks / pan-os 11.1.2 11.1.2.x
paloaltonetworks / pan-os 11.1.2-h1 11.1.2-h1.x
paloaltonetworks / pan-os 11.0.4 11.0.4.x
paloaltonetworks / pan-os 11.0.3 11.0.3.x
paloaltonetworks / pan-os 11.0.3-h1 11.0.3-h1.x
paloaltonetworks / pan-os 11.0.3-h3 11.0.3-h3.x
paloaltonetworks / pan-os 11.0.3-h5 11.0.3-h5.x
paloaltonetworks / pan-os 11.0.2-h3 11.0.2-h3.x
paloaltonetworks / pan-os 11.0.0-h1 11.0.0-h1.x
paloaltonetworks / pan-os 11.0.1 11.0.1.x
paloaltonetworks / pan-os 11.0.1-h2 11.0.1-h2.x
paloaltonetworks / pan-os 11.0.1-h3 11.0.1-h3.x
paloaltonetworks / pan-os 11.0.0-h2 11.0.0-h2.x
paloaltonetworks / pan-os 10.2.8 10.2.8.x