CVE-2024-3400: Palo Alto PAN-OS Command Injection

Q: Was PAN-OS exploited as a zero-day?

Yes, CVE-2024-3400 is a CVSS 10.0 command injection in PAN-OS GlobalProtect exploited by nation-state actors. It allows root-level code execution on Palo Alto firewalls.

CRITICAL

10CRITICAL

Published: 2024-04-12Affected: PAN-OS 10.2, 11.0, 11.1 GlobalProtectCWE-78 ↗

Was PAN-OS exploited as a zero-day?

A critical command injection vulnerability in Palo Alto Networks PAN-OS GlobalProtect feature. Unauthenticated attackers can execute arbitrary OS commands with root privileges on the firewall through specially crafted requests.

Impact & Exploitation

CVSS 10.0. Exploited as a zero-day by nation-state actors (UTA0218). Enables complete firewall compromise, network traffic interception, and lateral movement into protected networks.

How Precogs AI Detects Palo Alto PAN-OS Command Injection

Precogs AI Binary SAST detects command injection patterns in compiled firewall and network appliance firmware, identifying vulnerabilities in GlobalProtect-style VPN implementations.

Scan for CVE-2024-3400

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

CVE-2024-3400: Palo Alto PAN-OS Command Injection

Was PAN-OS exploited as a zero-day?

Impact & Exploitation

How Precogs AI Detects Palo Alto PAN-OS Command Injection

Precogs Research

Base Score

Tags

Quick Links

Is your system affected?

Was PAN-OS exploited as a zero-day?

Impact & Exploitation

How Precogs AI Detects Palo Alto PAN-OS Command Injection

Related Resources

🔍 Related CWE Entries

📋 OWASP Top 10

📖 Security Guides

🛡️ Notable Vulnerabilities

🔗 External References

Precogs Research

Base Score

Tags

Quick Links

Is your system affected?