cbcvebase.
CVE-2024-3383
published 2024-04-10

CVE-2024-3383: A vulnerability in how Palo Alto Networks PAN-OS software processes data received from Cloud Identity Engine (CIE) agents enables modification of User-ID…

PriorityP350critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
EPSS
0.58%
43.1th percentile
A vulnerability in how Palo Alto Networks PAN-OS software processes data received from Cloud Identity Engine (CIE) agents enables modification of User-ID groups. This impacts user access to network resources where users may be inappropriately denied or allowed access to resources based on your existing Security Policy rules.

Affected

9 ranges
VendorProductVersion rangeFixed in
palo_alto_networkspan-os>= 10.1.0 < 10.1.1110.1.11
palo_alto_networkspan-os>= 10.2.0 < 10.2.510.2.5
palo_alto_networkspan-os>= 11.0.0 < 11.0.311.0.3
paloaltocloud_ngfw
paloaltopan-os
paloaltoprisma_access
paloaltonetworkspan-os>= 10.1.0 < 10.1.1110.1.11
paloaltonetworkspan-os>= 10.2.0 < 10.2.510.2.5
paloaltonetworkspan-os>= 11.0.0 < 11.0.311.0.3
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.