Immediate Action Needed: Patch Palo Alto Firewall Vulnerability CVE-2024-3400

We are writing to inform you of a recently-discovered zero-day critical vulnerability (CVE-2024-3400) affecting Palo Alto firewalls, versions 10.2.9-h1, 11.0.4-h1 and 11.1.2-h3 (and possibly others). Attackers are actively exploiting this vulnerability, so prompt action is necessary. 

From the NIST website: “A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.”

NIST references the applicable vulnerability and remediation here:  https://nvd.nist.gov/vuln/detail/CVE-2024-3400. 

Important considerations:

• Palo Alto has released patches — apply ASAP.
• Palo Alto stated that telemetry mitigation no longer works. 

Don’t let advanced threats, like CVE-2024-3400, compromise your data. CloudJacketXi offers comprehensive protection for your digital environment, including:

• Advanced threat detection: Immediately identify suspicious activity and prevent attacks.
• Real-time response: Quickly isolate and contain breaches before they spread.
• Expert guidance: Get the insights you need to reduce your attack surface and maintain a strong security posture.
• 24/7 SOC monitoring: Extend your security team with 24/7 expert monitoring. Our team safeguards your data and resources around the clock, giving you the peace of mind and expertise you need.

Safeguard your organization. Learn more about CloudJacketXi at https://www.secnap.com/cloudjacket-xi/. Contact us today for a free consultation 954-350-0712.