Vulnerabilities

CVE-2024-0009

by Fred · 14/02/2024

An improper verification vulnerability in the GlobalProtect gateway feature of Palo Alto Networks PAN-OS software enables a malicious user with stolen credentials to establish a VPN connection from an unauthorized IP address.

More information : https://security.paloaltonetworks.com/CVE-2024-0009

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : LOW
User interaction : NONE
Confidentiality impact : LOW
Integrity impact : LOW
Base score : 6.3
Base severity : MEDIUM
Exploitability score : 2.8
Impact score : 3.4

Similar

Tags: Cybersecurity Alert