Lucene search

Palo_altoCVELIST:CVE-2024-3387

HistoryApr 10, 2024 - 5:06 p.m.

CVE-2024-3387 PAN-OS: Weak Certificate Strength in Panorama Software Leads to Sensitive Information Disclosure

2024-04-1017:06:36

CWE-326

palo_alto

www.cve.org

weak certificate

pan-os

mitm attack

sensitive information

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

5.3

Confidence

High

EPSS

Percentile

9.0%

JSON

A weak (low bit strength) device certificate in Palo Alto Networks Panorama software enables an attacker to perform a meddler-in-the-middle (MitM) attack to capture encrypted traffic between the Panorama management server and the firewalls it manages. With sufficient computing resources, the attacker could break encrypted communication and expose sensitive information that is shared between the management server and the firewalls.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "PAN-OS",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "status": "unaffected",
        "version": "9.0.0"
      },
      {
        "status": "unaffected",
        "version": "9.1.0"
      },
      {
        "changes": [
          {
            "at": "10.1.12",
            "status": "unaffected"
          }
        ],
        "lessThan": "10.1.12",
        "status": "affected",
        "version": "10.1.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "10.2.7-h3",
            "status": "unaffected"
          }
        ],
        "lessThan": "10.2.7-h3",
        "status": "affected",
        "version": "10.2.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "10.2.8",
            "status": "unaffected"
          }
        ],
        "lessThan": "10.2.8",
        "status": "affected",
        "version": "10.2.0",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "11.0.4",
            "status": "unaffected"
          }
        ],
        "lessThan": "11.0.4",
        "status": "affected",
        "version": "11.0.0",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "11.1.0"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Cloud NGFW",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "status": "unaffected",
        "version": "All"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Prisma Access",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "status": "unaffected",
        "version": "All"
      }
    ]
  }
]

References

security.paloaltonetworks.com/CVE-2024-3387

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

5.3

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for CVELIST:CVE-2024-3387