CVE-2024-3387

Summary

A weak (low bit strength) device certificate in Palo Alto Networks Panorama software enables an attacker to perform a meddler-in-the-middle (MitM) attack to capture encrypted traffic between the Panorama management server and the firewalls it manages. With sufficient computing resources, the attacker could break encrypted communication and expose sensitive information that is shared between the management server and the firewalls.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksPAN-OS9.0.0unaffected
Palo Alto NetworksPAN-OS9.1.0unaffected
Palo Alto NetworksPAN-OS10.1.0 < 10.1.12affected
Palo Alto NetworksPAN-OS10.2.0 < 10.2.7-h3affected
Palo Alto NetworksPAN-OS10.2.0 < 10.2.8affected
Palo Alto NetworksPAN-OS11.0.0 < 11.0.4affected
Palo Alto NetworksPAN-OS11.1.0unaffected
Palo Alto NetworksCloud NGFWAllunaffected
Palo Alto NetworksPrisma AccessAllunaffected

Weaknesses

  • CWE-326: CWE-326 Inadequate Encryption Strength

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References