Lucene search

Palo_altoVULNRICHMENT:CVE-2024-0010

HistoryFeb 14, 2024 - 5:32 p.m.

CVE-2024-0010 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Portal

2024-02-1417:32:28

CWE-79

palo_alto

github.com

reflected cross-site scripting

globalprotect portal

pan-os

malicious link

phishing

credential theft

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

5.7

Confidence

High

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect portal feature of Palo Alto Networks PAN-OS software enables execution of malicious JavaScript (in the context of a user’s browser) if a user clicks on a malicious link, allowing phishing attacks that could lead to credential theft.

CNA Affected

[
  {
    "vendor": "Palo Alto Networks",
    "product": "PAN-OS",
    "versions": [
      {
        "status": "affected",
        "changes": [
          {
            "at": "9.0.17-h4",
            "status": "unaffected"
          }
        ],
        "version": "9.0",
        "lessThan": "9.0.17-h4",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "changes": [
          {
            "at": "9.1.17",
            "status": "unaffected"
          }
        ],
        "version": "9.1",
        "lessThan": "9.1.17",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "changes": [
          {
            "at": "10.1.11-h1",
            "status": "unaffected"
          }
        ],
        "version": "10.1",
        "lessThan": "10.1.11-h1",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "changes": [
          {
            "at": "10.1.12",
            "status": "unaffected"
          }
        ],
        "version": "10.1",
        "lessThan": "10.1.12",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "changes": [
          {
            "at": "11.0.1",
            "status": "unaffected"
          }
        ],
        "version": "10.2",
        "lessThan": "11.0.1",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "changes": [
          {
            "at": "10.1.10-h1",
            "status": "unaffected"
          }
        ],
        "version": "11.0",
        "lessThan": "10.1.10-h1",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "11.1"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Palo Alto Networks",
    "product": "Prisma Access",
    "versions": [
      {
        "status": "unaffected",
        "version": "All"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Palo Alto Networks",
    "product": "Cloud NGFW",
    "versions": [
      {
        "status": "unaffected",
        "version": "All"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

security.paloaltonetworks.com/CVE-2024-0010

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

5.7

Confidence

High

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2024-0010