Lucene search

Palo Alto Networks Product Security Incident Response TeamPA-CVE-2024-0010

HistoryFeb 14, 2024 - 5:00 p.m.

PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Portal

2024-02-1417:00:00

Palo Alto Networks Product Security Incident Response Team

securityadvisories.paloaltonetworks.com

pan-os

globalprotect portal

cross-site scripting

vulnerability

threat prevention

threat id 94972

credential theft

phishing attacks

software update

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

5.9

Confidence

High

EPSS

Percentile

9.0%

JSON

A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect portal feature of Palo Alto Networks PAN-OS software enables execution of malicious JavaScript in the context of a user’s browser if that user clicks on a malicious link, allowing phishing attacks that could lead to credential theft.

Work around:
Customers with a Threat Prevention subscription can block attacks for this vulnerability by enabling Threat ID 94972 (Applications and Threats content update 8810).

Affected configurations

Vulners

Node

softwarepan-osRange<9.0.17-h4

softwarepan-osRange<9.1.17

softwarepan-osRange<10.1.11-h1

softwarepan-osRange<10.1.12

VendorProductVersionCPE
softwarepan-os*cpe:2.3:a:software:pan-os:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
software	pan-os	*	cpe:2.3:a:software:pan-os::::::::

References

security.paloaltonetworks.com/CVE-2024-0010

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

5.9

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for PA-CVE-2024-0010