Vulnerability Details CVE-2024-3393
A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.698
EPSS Ranking 98.6%
CVSS Severity
CVSS v3 Score 7.5
Proposed Action
Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malicious DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.
Ransomware Campaign
Unknown
Products affected by CVE-2024-3393
-
cpe:2.3:a:paloaltonetworks:prisma_access:-
-
cpe:2.3:o:paloaltonetworks:pan-os:10.1.14
-
cpe:2.3:o:paloaltonetworks:pan-os:10.2.10
-
cpe:2.3:o:paloaltonetworks:pan-os:10.2.11
-
cpe:2.3:o:paloaltonetworks:pan-os:10.2.12
-
cpe:2.3:o:paloaltonetworks:pan-os:10.2.13
-
cpe:2.3:o:paloaltonetworks:pan-os:10.2.8
-
cpe:2.3:o:paloaltonetworks:pan-os:10.2.9
-
cpe:2.3:o:paloaltonetworks:pan-os:11.0.0
-
cpe:2.3:o:paloaltonetworks:pan-os:11.0.1
-
cpe:2.3:o:paloaltonetworks:pan-os:11.0.2
-
cpe:2.3:o:paloaltonetworks:pan-os:11.0.3
-
cpe:2.3:o:paloaltonetworks:pan-os:11.0.4
-
cpe:2.3:o:paloaltonetworks:pan-os:11.0.5
-
cpe:2.3:o:paloaltonetworks:pan-os:11.0.6
-
cpe:2.3:o:paloaltonetworks:pan-os:11.1.0
-
cpe:2.3:o:paloaltonetworks:pan-os:11.1.1
-
cpe:2.3:o:paloaltonetworks:pan-os:11.1.2
-
cpe:2.3:o:paloaltonetworks:pan-os:11.1.3
-
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4
-
cpe:2.3:o:paloaltonetworks:pan-os:11.1.5
-
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6
-
cpe:2.3:o:paloaltonetworks:pan-os:11.2.0
-
cpe:2.3:o:paloaltonetworks:pan-os:11.2.1
-
cpe:2.3:o:paloaltonetworks:pan-os:11.2.2