Palo Alto Networks has issued a critical security advisory outlining numerous vulnerabilities across its product lines, such as PAN-OS, Cortex XDR, and Expedition. These weaknesses vary in severity and potential impact, but collectively present a significant risk to organizations that depend on Palo Alto’s solutions.
CVE-2024-5910: Missing Authentication in Expedition (CVSS 9.3):
By F2
/ Tuesday , June 24 2025
The U.S. House of Representatives has banned congressional staff from using WhatsApp on government devices due to security concerns, as...
Read More
By F2
/ Tuesday , June 24 2025
Kaspersky found a new mobile malware dubbed SparkKitty in Google Play and Apple App Store apps, targeting Android and iOS....
Read More
By F2
/ Tuesday , June 24 2025
OWASP has released its AI Testing Guide, a framework to help organizations find and fix vulnerabilities specific to AI systems....
Read More
By F2
/ Tuesday , June 24 2025
In a major milestone for the country’s digital infrastructure, Axentec PLC has officially launched Axentec Cloud, Bangladesh’s first Tier-4 cloud...
Read More
By infosecbulletin
/ Monday , June 23 2025
A hacking group reportedly linked to Russian government has been discovered using a new phishing method that bypasses two-factor authentication...
Read More
By infosecbulletin
/ Wednesday , June 18 2025
Russian cybersecurity experts discovered the first local data theft attacks using a modified version of legitimate near field communication (NFC)...
Read More
By infosecbulletin
/ Tuesday , June 17 2025
Cybersecurity researcher Jeremiah Fowler discovered an unsecured database with 170,360 records belonging to a real estate company. It contained personal...
Read More
By infosecbulletin
/ Tuesday , June 17 2025
GreyNoise found attempts to exploit CVE-2023-28771, a vulnerability in Zyxel's IKE affecting UDP port 500. The attack centers around CVE-2023-28771,...
Read More
By infosecbulletin
/ Tuesday , June 17 2025
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently included two high-risk vulnerabilities in its Known Exploited Vulnerabilities (KEV)...
Read More
By infosecbulletin
/ Monday , June 16 2025
SafetyDetectives’ Cybersecurity Team discovered a public post on a clear web forum in which a threat actor claimed to have...
Read More
The vulnerability CVE-2024-5910 affects the Expedition configuration management tool, allowing network access to be exploited by an attacker to take over admin accounts, potentially exposing sensitive data and credentials. It is important for all Expedition users to update to version 1.2.92 or later as soon as possible, as recommended by Palo Alto Networks.
PAN-OS Vulnerabilities:
PAN-OS, the operating system used by Palo Alto firewalls, has several vulnerabilities. These include an arbitrary file upload flaw (CVE-2024-5911), which could disrupt Panorama systems and cause service outages. Another vulnerability (CVE-2024-5913) allows privilege escalation if an attacker can manipulate the physical file system. Additionally, there is a man-in-the-middle vulnerability (CVE-2024-3596) that enables attackers to bypass authentication and obtain superuser privileges when using RADIUS authentication with CHAP or PAP.
Cortex XDR Agent Flaw:
The Cortex XDR agent, which protects endpoints, is affected by CVE-2024-5912. This flaw can allow attackers to bypass security measures and run untrusted software on compromised devices.
Mitigation and Remediation:
Palo Alto Networks advises all affected users to install the patches and updates as soon as possible. The security advisory also outlines specific workarounds and measures, such as restricting network access to Expedition and following best practices for securing administrative access to PAN-OS.