CVE-2024-3384
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
A vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to reboot PAN-OS firewalls when receiving Windows New Technology LAN Manager (NTLM) packets from Windows servers. Repeated attacks eventually cause the firewall to enter maintenance mode, which requires manual intervention to bring the firewall back online.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | PAN-OS | 8.1.0 < 8.1.24 | affected |
| Palo Alto Networks | PAN-OS | 9.0.0 < 9.0.17 | affected |
| Palo Alto Networks | PAN-OS | 9.1.0 < 9.1.15-h1 | affected |
| Palo Alto Networks | PAN-OS | 10.0.0 < 10.0.12 | affected |
| Palo Alto Networks | PAN-OS | 10.1.0 | unaffected |
| Palo Alto Networks | PAN-OS | 10.2.0 | unaffected |
| Palo Alto Networks | PAN-OS | 11.0.0 | unaffected |
| Palo Alto Networks | PAN-OS | 11.1.0 | unaffected |
| Palo Alto Networks | Cloud NGFW | All | unaffected |
| Palo Alto Networks | Prisma Access | All | unaffected |
Weaknesses
- CWE-1286: CWE-1286 Improper Validation of Syntactic Correctness of Input
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.