Palo Alto Networks security advisory (AV24-730)

Serial number: AV24-730
Date: December 27, 2024

On December 26, 2024, Palo Alto Networks published a security advisory to address vulnerabilities in multiple products. Included were critical updates for the following:

• PAN-OS 11.2 – versions prior to 11.2.3
• PAN-OS 11.1 – versions prior to 11.1.5
• PAN-OS 10.2 – versions 10.2.8 and later, versions prior to 10.2.10-h2 and versions prior to 10.2.13.h2
• PAN-OS 10.1 – versions 10.1.14 and later, versions prior to 10.1.14-h8
• Prisma Access – versions 10.2.8 on PAN-OS and later, versions prior to 11.2.3 on PAN-OS

Exploitation of this vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. could lead to denial of service (DoS DOSSee denial-of-service attack. ). Palo Alto Networks has indicated that CVE-2024-3393 has been exploited.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• Palo Alto Networks Security Advisories – CVE-2024-3393
• Palo Alto Network Security Advisories