Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2024-5910 Expedition: Missing Authentication Leads to Admin Account Takeover

🗓️ 10 Jul 2024 18:26:39Reported by palo_altoType 
cvelist
 cvelist🔗 www.cve.org👁 42 Views

Expedition admin account takeover due to missing authentication in CVE-2024-5910

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Affected
Refs
ReporterTitlePublishedViews
Family
The Hacker News		Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns
9 Nov 202406:12
thn
The Hacker News		Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool
11 Jul 202415:19
thn
The Hacker News		CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability
8 Nov 202405:17
thn
The Hacker News		CISA Flags Two Actively Exploited Palo Alto Flaws; New RCE Attack Confirmed
15 Nov 202405:04
thn
The Hacker News		PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs and Patch Released
16 Nov 202408:21
thn
The Hacker News		THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 04 - Nov 10)
11 Nov 202411:57
thn
The Hacker News		THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 11 - Nov 17)
18 Nov 202411:36
thn
Nuclei		Palo Alto Expedition - Admin Account Takeover
9 Oct 202417:25
nuclei
Exploit DB		Palo Alto Networks Expedition 1.2.90.1 - Admin Account Takeover
6 Apr 202500:00
exploitdb
NVD		CVE-2024-5910
10 Jul 202419:15
nvd
Rows per page
[
  {
    "defaultStatus": "unaffected",
    "product": "Expedition",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "changes": [
          {
            "at": "1.2.92",
            "status": "unaffected"
          }
        ],
        "lessThan": "1.2.92",
        "status": "affected",
        "version": "1.2",
        "versionType": "custom"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
10 Jul 2024 18:39Current
CVSS49.3
EPSS0.90821
CWE-306
expeditionadmin account takeovermissing authenticationcve-2024-5910palo alto networksconfiguration migrationcredential risk
42
.json
Report