CVE-2024-9463
Expedition: Unauthenticated OS Command Injection Vulnerability Leads to Firewall Credential Disclosure
In short
A flaw in Palo Alto Networks Expedition allows anyone to run harmful commands on the system without logging in, exposing firewall passwords and security keys stored in plaintext.
Technical detail
Unauthenticated OS command injection via CWE-78 enables arbitrary command execution with root privileges in Expedition. An attacker can extract sensitive credentials including firewall usernames, cleartext passwords, configurations, and API keys without authentication.
Summary generated and translated by AI from the official description.
An OS command injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to run arbitrary OS commands as root in Expedition, resulting in disclosure of usernames, cleartext passwords, device configurations, and device API keys of PAN-OS firewalls.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:N/SA:N/AU:N/R:U/V:C/RE:H/U:Amber
Affected products
Palo Alto Networks · Expeditionpublic PoCs found — 1
githubgithub.com/momo1239/CVE-2024-9463-Proof-of-Concept★ 1⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →