SecuriTricks - CVE-2024-3393

Product(s) Impacted

Palo Alto Networks PAN-OS

Description

A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Weaknesses

CWE-754

Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

CWE ID: 754

Date

Published: Dec. 27, 2024, 10:15 a.m.

Last Modified: Jan. 4, 2025, 2 a.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

psirt@paloaltonetworks.com

CVE-2024-3393

Tags

Product(s) Impacted

Description

Weaknesses

CWE-754

Improper Check for Unusual or Exceptional Conditions

Date

Status : Awaiting Analysis

Source

References

CVE-2024-3393

Tags

Product(s) Impacted

Description

Weaknesses

CWE-754

Improper Check for Unusual or Exceptional Conditions

Date

Status : Awaiting Analysis

Source

References

Share