CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-3393

A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.647

EPSS Ranking 98.4%

CVSS Severity

CVSS v3 Score 7.5

Proposed Action

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malicious DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Ransomware Campaign

Unknown

References

Products affected by CVE-2024-3393

Paloaltonetworks » Prisma Access » Version: N/A

cpe:2.3:a:paloaltonetworks:prisma_access:-
Paloaltonetworks » Pan-Os » Version: 10.1.14

cpe:2.3:o:paloaltonetworks:pan-os:10.1.14
Paloaltonetworks » Pan-Os » Version: 10.2.10

cpe:2.3:o:paloaltonetworks:pan-os:10.2.10
Paloaltonetworks » Pan-Os » Version: 10.2.11

cpe:2.3:o:paloaltonetworks:pan-os:10.2.11
Paloaltonetworks » Pan-Os » Version: 10.2.12

cpe:2.3:o:paloaltonetworks:pan-os:10.2.12
Paloaltonetworks » Pan-Os » Version: 10.2.13

cpe:2.3:o:paloaltonetworks:pan-os:10.2.13
Paloaltonetworks » Pan-Os » Version: 10.2.14

cpe:2.3:o:paloaltonetworks:pan-os:10.2.14
Paloaltonetworks » Pan-Os » Version: 10.2.15

cpe:2.3:o:paloaltonetworks:pan-os:10.2.15
Paloaltonetworks » Pan-Os » Version: 10.2.8

cpe:2.3:o:paloaltonetworks:pan-os:10.2.8
Paloaltonetworks » Pan-Os » Version: 10.2.9

cpe:2.3:o:paloaltonetworks:pan-os:10.2.9
Paloaltonetworks » Pan-Os » Version: 11.0.0

cpe:2.3:o:paloaltonetworks:pan-os:11.0.0
Paloaltonetworks » Pan-Os » Version: 11.0.1

cpe:2.3:o:paloaltonetworks:pan-os:11.0.1
Paloaltonetworks » Pan-Os » Version: 11.0.2

cpe:2.3:o:paloaltonetworks:pan-os:11.0.2
Paloaltonetworks » Pan-Os » Version: 11.0.3

cpe:2.3:o:paloaltonetworks:pan-os:11.0.3
Paloaltonetworks » Pan-Os » Version: 11.0.4

cpe:2.3:o:paloaltonetworks:pan-os:11.0.4
Paloaltonetworks » Pan-Os » Version: 11.0.5

cpe:2.3:o:paloaltonetworks:pan-os:11.0.5
Paloaltonetworks » Pan-Os » Version: 11.0.6

cpe:2.3:o:paloaltonetworks:pan-os:11.0.6
Paloaltonetworks » Pan-Os » Version: 11.1.0

cpe:2.3:o:paloaltonetworks:pan-os:11.1.0
Paloaltonetworks » Pan-Os » Version: 11.1.1

cpe:2.3:o:paloaltonetworks:pan-os:11.1.1
Paloaltonetworks » Pan-Os » Version: 11.1.10

cpe:2.3:o:paloaltonetworks:pan-os:11.1.10
Paloaltonetworks » Pan-Os » Version: 11.1.2

cpe:2.3:o:paloaltonetworks:pan-os:11.1.2
Paloaltonetworks » Pan-Os » Version: 11.1.3

cpe:2.3:o:paloaltonetworks:pan-os:11.1.3
Paloaltonetworks » Pan-Os » Version: 11.1.4

cpe:2.3:o:paloaltonetworks:pan-os:11.1.4
Paloaltonetworks » Pan-Os » Version: 11.1.5

cpe:2.3:o:paloaltonetworks:pan-os:11.1.5
Paloaltonetworks » Pan-Os » Version: 11.1.6

cpe:2.3:o:paloaltonetworks:pan-os:11.1.6
Paloaltonetworks » Pan-Os » Version: 11.1.7

cpe:2.3:o:paloaltonetworks:pan-os:11.1.7
Paloaltonetworks » Pan-Os » Version: 11.1.8

cpe:2.3:o:paloaltonetworks:pan-os:11.1.8
Paloaltonetworks » Pan-Os » Version: 11.1.9

cpe:2.3:o:paloaltonetworks:pan-os:11.1.9
Paloaltonetworks » Pan-Os » Version: 11.2.0

cpe:2.3:o:paloaltonetworks:pan-os:11.2.0
Paloaltonetworks » Pan-Os » Version: 11.2.1

cpe:2.3:o:paloaltonetworks:pan-os:11.2.1
Paloaltonetworks » Pan-Os » Version: 11.2.2

cpe:2.3:o:paloaltonetworks:pan-os:11.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-3393

Products

Pricing

Contact Us