Palo Alto Networks Security Advisories

Found 2
VersionsAffectedUnaffected
10 NCVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect
Cloud NGFW
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
PAN-OS 10.0
➔ View additional products
none
< 11.1.0-h3, < 11.1.1-h1, < 11.1.2-h3
< 11.0.2-h4, < 11.0.3-h10, < 11.0.4-h1
< 10.2.5-h6, < 10.2.6-h3, < 10.2.7-h8, < 10.2.8-h3, < 10.2.9-h1
none
none
none
All
>= 11.1.0-h3, >= 11.1.1-h1, >= 11.1.2-h3
>= 11.0.2-h4, >= 11.0.3-h10, >= 11.0.4-h1 (See additional hotfixes in Solution section)
>= 10.2.5-h6, >= 10.2.6-h3, >= 10.2.7-h8, >= 10.2.8-h3, >= 10.2.9-h1 (See additional hotfixes in Solution section)
All
All
all
2024-04-122024-04-17
6CVE-2023-48795 Impact of Terrapin SSH Attack
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
PAN-OS 9.1
PAN-OS 9.0
Prisma SD-WAN ION 6.2
Prisma SD-WAN ION 6.1
Prisma SD-WAN ION 5.6
< 11.1.3
< 11.0.7
< 10.2.11
All
All
All
< 6.2.4
< 6.1.8
< 5.6.19
>= 11.1.3 (ETA: end of April)
>= 11.0.7 (ETA: end of July)
>= 10.2.11 (ETA: end of June)
TBD
TBD
None
>= 6.2.4 (ETA: end of June)
>= 6.1.8
>= 5.6.19 (ETA: end of July)
2024-01-092024-03-29
N = Exploitable over the network with low complexity, unauthenticated attack.
© 2024 Palo Alto Networks, Inc. All rights reserved.