cbcvebase.
CVE-2024-3384
published 2024-04-10

CVE-2024-3384: A vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to reboot PAN-OS firewalls when receiving Windows New Technology LAN Manager…

PriorityP340high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.89%
54.7th percentile
A vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to reboot PAN-OS firewalls when receiving Windows New Technology LAN Manager (NTLM) packets from Windows servers. Repeated attacks eventually cause the firewall to enter maintenance mode, which requires manual intervention to bring the firewall back online.

Affected

12 ranges
VendorProductVersion rangeFixed in
palo_alto_networkspan-os>= 10.0.0 < 10.0.1210.0.12
palo_alto_networkspan-os>= 8.1.0 < 8.1.248.1.24
palo_alto_networkspan-os>= 9.0.0 < 9.0.179.0.17
palo_alto_networkspan-os>= 9.1.0 < 9.1.15-h19.1.15-h1
paloaltocloud_ngfw
paloaltopan-os
paloaltoprisma_access
paloaltonetworkspan-os
paloaltonetworkspan-os>= 10.0.0 < 10.0.1210.0.12
paloaltonetworkspan-os>= 8.1.0 < 8.1.248.1.24
paloaltonetworkspan-os>= 9.0.0 < 9.0.179.0.17
paloaltonetworkspan-os>= 9.1.0 < 9.1.159.1.15
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.