CVE-2024-8691

A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a malicious authenticated GlobalProtect user to impersonate another GlobalProtect user. Active GlobalProtect users impersonated by an attacker who is exploiting this vulnerability are disconnected from GlobalProtect. Upon exploitation, PAN-OS logs indicate that the impersonated user authenticated to GlobalProtect, which hides the identity of the attacker.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*

History

01 Nov 2024, 14:26

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 8.1
v2 : unknown
v3 : 7.1

17 Oct 2024, 15:25

Type Values Removed Values Added
First Time Paloaltonetworks
Paloaltonetworks pan-os
CPE cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
References () https://security.paloaltonetworks.com/CVE-2024-8691 - () https://security.paloaltonetworks.com/CVE-2024-8691 - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.1

12 Sep 2024, 12:35

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad en el portal GlobalProtect del software PAN-OS de Palo Alto Networks permite que un usuario autenticado de GlobalProtect se haga pasar por otro usuario de GlobalProtect. Los usuarios activos de GlobalProtect suplantados por un atacante que explota esta vulnerabilidad se desconectan de GlobalProtect. Tras la explotación, los registros de PAN-OS indican que el usuario suplantado se autenticó en GlobalProtect, lo que oculta la identidad del atacante.

11 Sep 2024, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-11 17:15

Updated : 2024-11-01 14:26


NVD link : CVE-2024-8691

Mitre link : CVE-2024-8691

CVE.ORG link : CVE-2024-8691


JSON object : View

Products Affected

paloaltonetworks

  • pan-os
CWE
CWE-863

Incorrect Authorization