CVE-2024-5917
published 2024-11-14CVE-2024-5917: A server-side request forgery in PAN-OS software enables an authenticated attacker with administrative privileges to use the administrative web interface as a…
PriorityP427medium4.9CVSS 3.1
AVNACLPRHUINSUCHINAN
EPSS
0.48%
38.0th percentile
A server-side request forgery in PAN-OS software enables an authenticated attacker with administrative privileges to use the administrative web interface as a proxy, which enables the attacker to view internal network resources not otherwise accessible.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | pan-os | >= 10.1.0 < 10.1.7 | 10.1.7 |
| palo_alto_networks | pan-os | >= 10.2.0 < 10.2.2 | 10.2.2 |
| paloalto | cloud_ngfw | — | — |
| paloalto | pan-os | — | — |
| paloaltonetworks | pan-os | >= 10.1.0 < 10.1.7 | 10.1.7 |
| paloaltonetworks | pan-os | >= 10.2.0 < 10.2.2 | 10.2.2 |
CVSS provenance
nvdv3.14.9MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
nvdv4.02.1LOWCVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:L/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:A/V:D/RE:M/U:Amber
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
PAN-OS: Server-Side Request Forgery in WildFire
vendor_paloalto·CVSS 2.1
CVE-2024-5917 [LOW] CWE-918 PAN-OS: Server-Side Request Forgery in WildFire
PAN-OS: Server-Side Request Forgery in WildFire
A server-side request forgery in PAN-OS software enables an authenticated attacker to use the administrative web interface as a proxy, which enables the attacker to view internal network resources not otherwise accessible.
Affected products: Cloud NGFW, PAN-OS
Solution: This issue is fixed in PAN-OS 10.1.7, PAN-OS 10.2.2, and all later PAN-OS versions.
Workaround: Recommended mitigation—The vast majority of firewalls already follow Palo Alto Networks and industry best practices. However, if you haven’t already, we strongly recommend that you secure access to your management interface according to our best practice deployment guidelines. Specifically, you should restrict access to the management interface to only trusted internal IP addr
GHSA
GHSA-2j54-3gcc-fxxg: A server-side request forgery in PAN-OS software enables an unauthenticated attacker to use the administrative web interface as a proxy, which enables
ghsa_unreviewed·2024-11-14
CVE-2024-5917 [MEDIUM] CWE-918 GHSA-2j54-3gcc-fxxg: A server-side request forgery in PAN-OS software enables an unauthenticated attacker to use the administrative web interface as a proxy, which enables
A server-side request forgery in PAN-OS software enables an unauthenticated attacker to use the administrative web interface as a proxy, which enables the attacker to view internal network resources not otherwise accessible.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-11-14
Published