CVE-2024-3393

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 27, 2024

Updated: Jan 14, 2025

CWE ID 754

Summary

CVE-2024-3393 is a Denial of Service vulnerability affecting the DNS Security feature of Palo Alto Networks PAN-OS software. An unauthenticated attacker can exploit this issue by sending a malicious packet through the firewall's data plane, causing the device to reboot. Multiple attempts to trigger this condition can result in the firewall entering maintenance mode. This vulnerability poses a risk of downtime and potential disruption of network services. It is recommended that users apply the available patch as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

PAN-OS
Prisma Access

Affected Vendors

Palo Alto Networks

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners