Lucene search
HistoryFeb 14, 2024 - 6:15 p.m.
CVE-2024-0008
palo alto networks
session management
unauthorized access
vulnerability
cve-2024-0008
web interface
6.6 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Web sessions in the management interface in Palo Alto Networks PAN-OS software do not expire in certain situations, making it susceptible to unauthorized access.
Related
paloalto
paloalto
PAN-OS: Insufficient Session Expiration Vulnerability in the Web Interface
2024-02-14 17:00:00
cvelist
cvelist
nessus
nessus
prion
prion
Design/Logic Flaw
2024-02-14 18:15:00
cve
cve
CVE-2024-0008
2024-02-14 18:15:47
ics
ics
Siemens RUGGEDCOM APE1808
2024-04-11 12:00:00
6.6 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for NVD:CVE-2024-0008