CVE-2024-8687
published 2024-09-11CVE-2024-8687: An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured…
PriorityP337high7.1CVSS 3.1
AVNACLPRLUINSUCLINAH
EPSS
0.40%
32.3th percentile
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After the password or passcode is known, end users can uninstall, disable, or disconnect GlobalProtect even if the GlobalProtect app configuration would not normally permit them to do so.
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | globalprotect_app | >= 5.1.0 < 5.1.12 | 5.1.12 |
| palo_alto_networks | globalprotect_app | >= 5.2.0 < 5.2.13 | 5.2.13 |
| palo_alto_networks | globalprotect_app | >= 6.0.0 < 6.0.7 | 6.0.7 |
| palo_alto_networks | globalprotect_app | >= 6.1.0 < 6.1.2 | 6.1.2 |
| palo_alto_networks | globalprotect_app | >= 6.2.0 < 6.2.1 | 6.2.1 |
| palo_alto_networks | pan-os | >= 10.0.0 < 10.0.12 | 10.0.12 |
| palo_alto_networks | pan-os | >= 10.1.0 < 10.1.9 | 10.1.9 |
| palo_alto_networks | pan-os | >= 10.2.0 < 10.2.4 | 10.2.4 |
| palo_alto_networks | pan-os | >= 11.0.0 < 11.0.1 | 11.0.1 |
| palo_alto_networks | pan-os | >= 8.1.0 < 8.1.25 | 8.1.25 |
| palo_alto_networks | pan-os | >= 9.0.0 < 9.0.17 | 9.0.17 |
| palo_alto_networks | pan-os | >= 9.1.0 < 9.1.16 | 9.1.16 |
| palo_alto_networks | prisma_access | >= 10.2.0 < 10.2.9 on PAN-OS | 10.2.9 on PAN-OS |
| paloalto | cloud_ngfw | — | — |
| paloalto | globalprotect_app | — | — |
| paloalto | pan-os | — | — |
| paloalto | prisma_access | — | — |
| paloaltonetworks | globalprotect | — | — |
| paloaltonetworks | globalprotect | >= 5.1.0 < 5.1.12 | 5.1.12 |
| paloaltonetworks | globalprotect | >= 5.2.0 < 5.2.13 | 5.2.13 |
| paloaltonetworks | globalprotect | >= 6.0.0 < 6.0.7 | 6.0.7 |
| paloaltonetworks | globalprotect | >= 6.1.0 < 6.1.2 | 6.1.2 |
| paloaltonetworks | pan-os | — | — |
| paloaltonetworks | pan-os | >= 10.0.0 < 10.0.12 | 10.0.12 |
| paloaltonetworks | pan-os | >= 10.1.0 < 10.1.9 | 10.1.9 |
CVSS provenance
nvdv3.17.1HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
nvdv4.06.9MEDIUMCVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:A/V:D/RE:M/U:Amber
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r589-95v2-93xr: An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured
ghsa_unreviewed·2024-09-11
CVE-2024-8687 [MEDIUM] CWE-497 GHSA-r589-95v2-93xr: An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After the password or passcode is known, end users can uninstall, disable, or disconnect GlobalProtect even if the GlobalProtect app configuration would not normally permit them to do so.
Palo Alto
PAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes
vendor_paloalto·2024-09-11·CVSS 6.9
CVE-2024-8687 [MEDIUM] CWE-497 PAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes
PAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After the password or passcode is known, end users can uninstall, disable, or disconnect GlobalProtect even if the GlobalProtect app configuration would not normally permit them to do so.
Affected products: Cloud NGFW, GlobalProtect App, PAN-OS, Prisma Access
Solution: This issue is fixed in PAN-OS 8.1.25, PAN-OS 9.0.17, PAN-OS 9.1.16, PAN-OS 10.0.12, PAN-OS 10.1.9, PAN-OS 10.2.4, PAN-OS 11.0.1, and all later PAN-OS versions. It is also fixed in Prisma Access 10.2.9 and all later Prisma Access ver
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-09-11
Published