CVE-2024-2431

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Mar 13, 2024
CWE ID 269

Summary

CVE-2024-2431 is a vulnerability in the Palo Alto Networks GlobalProtect app that allows a non-privileged user to disable the app when certain configurations are in place. The affected products include u4FSue, u4FSum, u4FSui, and u4FSuo. To remediate this vulnerability, organizations should update the GlobalProtect app to the latest version. The potential danger posed by this vulnerability is considered medium, with a base severity of 5.5. It has a low exploitability score and requires low privileges and local access to exploit. The impact score is 3.6, with high availability impact but no confidentiality or integrity impact.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-2431 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options