Palo Alto Networks Security Advisories

Palo Alto Networks Security Advisories

ClearOptions

version

Found 9

CVSS	Summary	Versions	Affected	Unaffected	Published	Updated
5.3	CVE-2024-8691 PAN-OS: User Impersonation in GlobalProtect Portal	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.1 PAN-OS 9.1 ➔ View additional products	None None None < 10.1.11 < 9.1.17 None	All All All >= 10.1.11 >= 9.1.17 all	2024-09-11	2024-09-11
6.9	CVE-2024-8687 PAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes	Cloud NGFW GlobalProtect App 6.3 GlobalProtect App 6.2 GlobalProtect App 6.1 GlobalProtect App 6.0 GlobalProtect App 5.2 GlobalProtect App 5.1 PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access	None None < 6.2.1 < 6.1.2 < 6.0.7 < 5.2.13 < 5.1.12 None None < 11.0.1 < 10.2.4 < 10.1.9 < 10.0.12 < 9.1.16 < 9.0.17 < 8.1.25 < 10.2.9 on PAN-OS	All All >= 6.2.1 >= 6.1.2 >= 6.0.7 >= 5.2.13 >= 5.1.12 All All >= 11.0.1 >= 10.2.4 >= 10.1.9 >= 10.0.12 >= 9.1.16 >= 9.0.17 >= 8.1.25 >= 10.2.9 on PAN-OS	2024-09-11	2024-09-11
6.7	CVE-2024-8688 PAN-OS: Arbitrary File Read Vulnerability in the Command Line Interface (CLI)	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 ➔ View additional products	None None None < 10.1.1 < 10.0.10 < 9.1.15 None	All All All >= 10.1.1 >= 10.0.10 >= 9.1.15 all	2024-09-11	2024-09-11
5.3	CVE-2024-3596 PAN-OS: CHAP and PAP When Used with RADIUS Authentication Lead to Privilege Escalation	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 Prisma Access	None None < 11.1.3 < 11.0.4-h5, < 11.0.6 < 10.2.4-h21, < 10.2.7-h21, < 10.2.8-h20, < 10.2.9-h8, < 10.2.10 < 10.1.12-h4, < 10.1.14 < 9.1.19 None	All All >= 11.1.3 >= 11.0.4-h5, >= 11.0.6 >= 10.2.4-h21, >= 10.2.7-h21, >= 10.2.8-h20, >= 10.2.9-h8, >= 10.2.10 >= 10.1.12-h4, >= 10.1.14 >= 9.1.19 All	2024-07-10	2025-04-30
8.2	CVE-2024-3385 PAN-OS: Firewall Denial of Service (DoS) when GTP Security is Disabled	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 Prisma Access	None None < 11.0.3 < 10.2.8 < 10.1.12 < 9.1.17 < 9.0.17-h4 None	All All >= 11.0.3 >= 10.2.8 >= 10.1.12 >= 9.1.17 >= 9.0.17-h4 All	2024-04-10	2024-04-10
5.1	CVE-2024-3388 PAN-OS: User Impersonation in GlobalProtect SSL VPN	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 Prisma Access	None None < 11.0.3 < 10.2.7-h3 < 10.1.11-h4 < 9.1.17 < 9.0.17-h4 < 8.1.26 < 10.2.4	All All >= 11.0.3 >= 10.2.7-h3 >= 10.1.11-h4 >= 9.1.17 >= 9.0.17-h4 >= 8.1.26 >= 10.2.4	2024-04-10	2024-04-10
8.2	CVE-2024-3384 PAN-OS: Firewall Denial of Service (DoS) via Malformed NTLM Packets	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 PAN-OS 8.1 ➔ View additional products	None None None < 10.0.12 < 9.1.15-h1 < 9.0.17 < 8.1.24 None	All All All >= 10.0.12 >= 9.1.15-h1 >= 9.0.17 >= 8.1.24 all	2024-04-10	2024-04-10
6.9	CVE-2024-3386 PAN-OS: Predefined Decryption Exclusions Does Not Work as Intended	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 10.0 PAN-OS 9.1 PAN-OS 9.0 Prisma Access	None None < 11.0.1-h2, < 11.0.2 < 10.2.4-h2, < 10.2.5 < 10.1.9-h3, < 10.1.10 < 10.0.13 < 9.1.17 < 9.0.17-h2 None	All All >= 11.0.1-h2, >= 11.0.2 >= 10.2.4-h2, >= 10.2.5 >= 10.1.9-h3, >= 10.1.10 >= 10.0.13 >= 9.1.17 >= 9.0.17-h2 All	2024-04-10	2024-04-10
5.1	CVE-2024-2433 PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss	Cloud NGFW PAN-OS 11.1 PAN-OS 11.0 PAN-OS 10.2 PAN-OS 10.1 PAN-OS 9.1 PAN-OS 9.0 Prisma Access	None None < 11.0.3 on Panorama < 10.2.8 on Panorama < 10.1.12 on Panorama < 9.1.17 on Panorama < 9.0.17-h4 on Panorama None	All All >= 11.0.3 on Panorama >= 10.2.8 on Panorama >= 10.1.12 on Panorama >= 9.1.17 on Panorama >= 9.0.17-h4 on Panorama All	2024-03-13	2024-03-13

© 2025 Palo Alto Networks, Inc. All rights reserved.