COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2024-3393

CVE-2024-3393

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2024-12-30
Reference
https://nvd.nist.gov/vuln/detail/CVE-2024-3393
⌖ exploited in the wild shame 50/100 exploited-in-wild

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malicious DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewal

Players implicated

Palo Alto Networks, Inc. · vendorPAN-OS · product

Description

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malicious DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Affected FedRAMP products 2 in the catalog

ProductProviderStatusMatch
GCS-HIGH Palo Alto Networks, Inc. Ready vendor-exact · 0.90
Palo Alto Networks Government Cloud Services Palo Alto Networks, Inc. Authorized vendor-exact · 0.90