CVE-2024-9471

A privilege escalation (PE) vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated PAN-OS administrator with restricted privileges to use a compromised XML API key to perform actions as a higher privileged PAN-OS administrator. For example, an administrator with "Virtual system administrator (read-only)" access could use an XML API key of a "Virtual system administrator" to perform write operations on the virtual system configuration even though they should be limited to read-only operations.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*

History

15 Oct 2024, 16:55

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 4.7
CPE cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
CWE NVD-CWE-noinfo
First Time Paloaltonetworks
Paloaltonetworks pan-os
References () https://security.paloaltonetworks.com/CVE-2024-9471 - () https://security.paloaltonetworks.com/CVE-2024-9471 - Vendor Advisory

10 Oct 2024, 12:51

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de escalada de privilegios (PE) en la API XML del software PAN-OS de Palo Alto Networks permite que un administrador de PAN-OS autenticado con privilegios restringidos utilice una clave API XML comprometida para realizar acciones como administrador de PAN-OS con privilegios superiores. Por ejemplo, un administrador con acceso de "Administrador de sistema virtual (solo lectura)" podría utilizar una clave API XML de un "Administrador de sistema virtual" para realizar operaciones de escritura en la configuración del sistema virtual, aunque deberían estar limitadas a operaciones de solo lectura.

09 Oct 2024, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-09 17:15

Updated : 2024-10-15 16:55


NVD link : CVE-2024-9471

Mitre link : CVE-2024-9471

CVE.ORG link : CVE-2024-9471


JSON object : View

Products Affected

paloaltonetworks

  • pan-os
CWE
NVD-CWE-noinfo CWE-269

Improper Privilege Management