CVE-2024-0007 Report - Details, Severity, & Advisories
Twingate Team
•
May 9, 2024
CVE-2024-0007 is a medium-severity vulnerability affecting Palo Alto Networks PAN-OS software on Panorama appliances. This cross-site scripting (XSS) vulnerability allows a malicious authenticated read-write administrator to store a JavaScript payload using the web interface, enabling the impersonation of another authenticated administrator. Systems running the affected software on Panorama appliances are at risk.
How do I know if I'm affected?
To determine if you're affected by the CVE-2024-0007 vulnerability, check if your system runs Palo Alto Networks PAN-OS software on Panorama appliances. Affected versions include PAN-OS 10.1 versions less than 10.1.6, PAN-OS 10.0 versions less than 10.0.11, PAN-OS 9.1 versions less than 9.1.16, PAN-OS 9.0 versions less than 9.0.17, and PAN-OS 8.1 versions less than 8.1.24-h1 and less than 8.1.25. If your system runs any of these versions, it may be vulnerable to this medium-severity cross-site scripting (XSS) issue.
What should I do if I'm affected?
If you're affected by the CVE-2024-0007 vulnerability, follow these steps to protect your system: first, follow the best practices for securing administrative access in the PAN-OS technical documentation. Second, if you have a Threat Prevention subscription, enable Threat ID 94996 to block attacks. Finally, update your PAN-OS to a fixed version, such as 8.1.24-h1, 9.0.17, 9.1.16, 10.0.11, or 10.1.6.
Is CVE-2024-0007 in CISA’s Known Exploited Vulnerabilities Catalog?
Yes, CVE-2024-0007 is in CISA's Known Exploited Vulnerabilities Catalog. This cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software was added on February 14, 2024. The catalog does not specify a due date or required action. However, it is recommended to update PAN-OS to a fixed version and follow best practices for securing administrative access.
Weakness enumeration
The weakness enumeration for this vulnerability is categorized as CWE-79 involves improper neutralization of input during web page generation, leading to cross-site scripting (XSS) issues in Palo Alto Networks PAN-OS software on Panorama appliances.
For more details
CVE-2024-0007 is a medium-severity cross-site scripting vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, refer to the NVD or the links provided below.
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
CVE-2024-0007 Report - Details, Severity, & Advisories
Twingate Team
•
May 9, 2024
CVE-2024-0007 is a medium-severity vulnerability affecting Palo Alto Networks PAN-OS software on Panorama appliances. This cross-site scripting (XSS) vulnerability allows a malicious authenticated read-write administrator to store a JavaScript payload using the web interface, enabling the impersonation of another authenticated administrator. Systems running the affected software on Panorama appliances are at risk.
How do I know if I'm affected?
To determine if you're affected by the CVE-2024-0007 vulnerability, check if your system runs Palo Alto Networks PAN-OS software on Panorama appliances. Affected versions include PAN-OS 10.1 versions less than 10.1.6, PAN-OS 10.0 versions less than 10.0.11, PAN-OS 9.1 versions less than 9.1.16, PAN-OS 9.0 versions less than 9.0.17, and PAN-OS 8.1 versions less than 8.1.24-h1 and less than 8.1.25. If your system runs any of these versions, it may be vulnerable to this medium-severity cross-site scripting (XSS) issue.
What should I do if I'm affected?
If you're affected by the CVE-2024-0007 vulnerability, follow these steps to protect your system: first, follow the best practices for securing administrative access in the PAN-OS technical documentation. Second, if you have a Threat Prevention subscription, enable Threat ID 94996 to block attacks. Finally, update your PAN-OS to a fixed version, such as 8.1.24-h1, 9.0.17, 9.1.16, 10.0.11, or 10.1.6.
Is CVE-2024-0007 in CISA’s Known Exploited Vulnerabilities Catalog?
Yes, CVE-2024-0007 is in CISA's Known Exploited Vulnerabilities Catalog. This cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software was added on February 14, 2024. The catalog does not specify a due date or required action. However, it is recommended to update PAN-OS to a fixed version and follow best practices for securing administrative access.
Weakness enumeration
The weakness enumeration for this vulnerability is categorized as CWE-79 involves improper neutralization of input during web page generation, leading to cross-site scripting (XSS) issues in Palo Alto Networks PAN-OS software on Panorama appliances.
For more details
CVE-2024-0007 is a medium-severity cross-site scripting vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, refer to the NVD or the links provided below.
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
CVE-2024-0007 Report - Details, Severity, & Advisories
Twingate Team
•
May 9, 2024
CVE-2024-0007 is a medium-severity vulnerability affecting Palo Alto Networks PAN-OS software on Panorama appliances. This cross-site scripting (XSS) vulnerability allows a malicious authenticated read-write administrator to store a JavaScript payload using the web interface, enabling the impersonation of another authenticated administrator. Systems running the affected software on Panorama appliances are at risk.
How do I know if I'm affected?
To determine if you're affected by the CVE-2024-0007 vulnerability, check if your system runs Palo Alto Networks PAN-OS software on Panorama appliances. Affected versions include PAN-OS 10.1 versions less than 10.1.6, PAN-OS 10.0 versions less than 10.0.11, PAN-OS 9.1 versions less than 9.1.16, PAN-OS 9.0 versions less than 9.0.17, and PAN-OS 8.1 versions less than 8.1.24-h1 and less than 8.1.25. If your system runs any of these versions, it may be vulnerable to this medium-severity cross-site scripting (XSS) issue.
What should I do if I'm affected?
If you're affected by the CVE-2024-0007 vulnerability, follow these steps to protect your system: first, follow the best practices for securing administrative access in the PAN-OS technical documentation. Second, if you have a Threat Prevention subscription, enable Threat ID 94996 to block attacks. Finally, update your PAN-OS to a fixed version, such as 8.1.24-h1, 9.0.17, 9.1.16, 10.0.11, or 10.1.6.
Is CVE-2024-0007 in CISA’s Known Exploited Vulnerabilities Catalog?
Yes, CVE-2024-0007 is in CISA's Known Exploited Vulnerabilities Catalog. This cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software was added on February 14, 2024. The catalog does not specify a due date or required action. However, it is recommended to update PAN-OS to a fixed version and follow best practices for securing administrative access.
Weakness enumeration
The weakness enumeration for this vulnerability is categorized as CWE-79 involves improper neutralization of input during web page generation, leading to cross-site scripting (XSS) issues in Palo Alto Networks PAN-OS software on Panorama appliances.
For more details
CVE-2024-0007 is a medium-severity cross-site scripting vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, refer to the NVD or the links provided below.
Solutions
Solutions
The VPN replacement your workforce will love.
Solutions