CVE-2024-5911

July 10, 2024, 7:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Palo Alto Networks Panorama software

Source

psirt@paloaltonetworks.com

Tags

CVE-2024-5911 details

Published : July 10, 2024, 7:15 p.m.
Last Modified : July 10, 2024, 7:15 p.m.

Description

An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and crash the Panorama. Repeated attacks eventually cause the Panorama to enter maintenance mode, which requires manual intervention to bring the Panorama back online.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description
CWE-434 Unrestricted Upload of File with Dangerous Type The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.

References

URL Source
https://security.paloaltonetworks.com/CVE-2024-5911 psirt@paloaltonetworks.com
This website uses the NVD API, but is not approved or certified by it.