Main Vulnerability Database SB2024031408

SB2024031408 - Denial of service in Palo Alto PAN-OS

Published: March 14, 2024

Security Bulletin ID SB2024031408

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Partial DoS

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Improper Privilege Management (CVE-ID: CVE-2024-2433)

CWE-ID: CWE-269 - Improper Privilege Management

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper privilege management within the web interface. A remote authenticated read-only administrator can upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images.

Remediation

Install update from vendor's website.

References

https://security.paloaltonetworks.com/CVE-2024-2433