CVE-2024-5913

An improper input validation vulnerability in Palo Alto Networks PAN-OS software enables an attacker with the ability to tamper with the physical file system to elevate privileges.

Published: Jul 10, 2024
Updated: May 4, 2025
CVE: CVE-2024-5913
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.8
AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
paloaltonetworks / pan-os	10.1.14	10.1.14.x
paloaltonetworks / pan-os	10.1.0	10.1.14
paloaltonetworks / pan-os	10.2.0	10.2.10
paloaltonetworks / pan-os	11.0.0	11.0.5
paloaltonetworks / pan-os	11.1.0	11.1.4
paloaltonetworks / pan-os	11.2.0	11.2.1

https://security.paloaltonetworks.com/CVE-2024-5913

Vulnerability Database

289,697

CVE-2024-5913