Palo Alto GlobalProtect Gateway Attacked with 0-day

 

The renown GlobalProtect VPN solution used by enterprises and government institution is affected to a command injection vulnerability that allows an unauthenticated attacker to execute arbitrary code with root privileges on the firewall (CVE-2024-3400).

The vulnerability was rated with a Critical severity score of 10 out of 10 (CVSS).

Exploitation of this vulnerability will allow attackers to pivot the attacked firewall device to access the internal network of the organisation, and gain access to internal resources.

Palo Alto strongly advise to patch the firmware immediately.

The affected firmware are: