Palo Alto veröffentlicht Patch für PAN-OS DoS-Fehler - sofort aktualisieren

Teilen:

Palo Alto Networks has disclosed a high-severity vulnerability impacting PAN-OS software that could cause a denial-of-service (DoS) condition on susceptible devices.

The flaw, tracked as CVE-2024-3393 (CVSS score: 8.7), impacts PAN-OS versions 10.X and 11.X, as well as Prisma Access running PAN-OS versions 10.2.8 and later or prior to 11.2.3. It has been addressed in PAN-OS 10.1.14-h8, PAN-OS 10.2.10-h12, PAN-OS 11.1.5, PAN-OS 11.2.3, and all later PAN-OS versions.

“A denial-of-service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall,” the company said in a Friday advisory.

“Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.”

Palo Alto Networks said it discovered the flaw in production use, and that it’s aware of customers “experiencing this denial-of-service (DoS) when their firewall blocks malicious DNS packets that trigger this issue.”

The extent of the activity is presently unknown. When reached for comment, the company acknowledged that the vulnerability is being used in the wild. “We proactively released this advisory to provide transparency and equip our customers with the information needed to protect their environments,” it told The Hacker News.

It’s worth pointing out that firewalls that have the DNS Security logging enabled are affected by CVE-2024-3393. Furthermore, the severity of the flaw drops to a CVSS score of 7.1 when access is only provided to authenticated end users via Prisma Access.

The fixes have also been extended to other commonly deployed maintenance releases –

  • PAN-OS 11.1 (11.1.2-h16, 11.1.3-h13, 11.1.4-h7, and 11.1.5)
  • PAN-OS 10.2 (10.2.8-h19, 10.2.9-h19, 10.2.10-h12, 10.2.11-h10, 10.2.12-h4, 10.2.13-h2, and 10.2.14)
  • PAN-OS 10.1 (10.1.14-h8 and 10.1.15)
  • PAN-OS 10.2.9-h19 and 10.2.10-h12 (only applicable to Prisma Access)
  • PAN-OS 11.0 (No fix owing to it reaching end-of-life status on November 17, 2024)

As workarounds and mitigations for unmanaged firewalls or those managed by Panorama, customers have the option of setting Log Severity to “none” for all configured DNS Security categories for each Anti-Spyware profile by navigating to Objects > Security Profiles > Anti-spyware > (select a profile) > DNS Policies > DNS Security.

For firewalls managed by Strata Cloud Manager (SCM), users can either follow the above steps to disable DNS Security logging directly on each device, or across all of them by opening a support case. For Prisma Access tenants managed by SCM, it’s recommended to open a support case to turn off logging until an upgrade is carried out.

CVE-2024-3393 Added to CISA KEV Catalog#

On December 30, 2024, the high-severity security flaw impacting Palo Alto Networks PAN-OS software has been added to the Cybersecurity and Infrastructure Security Agency’s (CISA) Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian Executive Branch (FCEB) agencies to apply the patches by January 20, 2025.

Quelle

Kommentar verfassen

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert

lade-bild
London, GB
10:48 pm, Apr. 21, 2025
Wetter-Symbol 10°C
L: 9° | H: 11°
aufgelockerte Bewölkung
Luftfeuchtigkeit: 85 %
Druck: 1013 mb
Wind: 10 mph WSW
Windböe: 0 mph
UV-Index: 0
Niederschlag: 0 mm
Wolken: 30%
Regen Chance: 0%
Sichtbarkeit: 10 km
Sonnenaufgang: 5:51 am
Sonnenuntergang: 8:06 pm
TäglichStündlich
Tägliche VorhersageStündliche Vorhersage
Tomorrow 10:00 pm
Wetter-Symbol
9° | 11°°C 0 mm 0% 12 mph 91 % 1017 mb 0 mm/h
Mi. Apr. 23 10:00 pm
Wetter-Symbol
9° | 15°°C 1 mm 100% 16 mph 96 % 1016 mb 0 mm/h
Do. Apr. 24 10:00 pm
Wetter-Symbol
8° | 15°°C 0 mm 0% 8 mph 90 % 1021 mb 0 mm/h
Fr. Apr. 25 10:00 pm
Wetter-Symbol
9° | 15°°C 0.4 mm 40% 8 mph 89 % 1021 mb 0 mm/h
Sa. Apr. 26 10:00 pm
Wetter-Symbol
10° | 13°°C 1 mm 100% 11 mph 95 % 1019 mb 0 mm/h
Tomorrow 1:00 am
Wetter-Symbol
9° | 10°°C 0 mm 0% 6 mph 87 % 1013 mb 0 mm/h
Tomorrow 4:00 am
Wetter-Symbol
8° | 9°°C 0 mm 0% 4 mph 91 % 1014 mb 0 mm/h
Tomorrow 7:00 am
Wetter-Symbol
8° | 8°°C 0 mm 0% 4 mph 91 % 1016 mb 0 mm/h
Tomorrow 10:00 am
Wetter-Symbol
13° | 13°°C 0 mm 0% 6 mph 68 % 1017 mb 0 mm/h
Tomorrow 1:00 pm
Wetter-Symbol
16° | 16°°C 0 mm 0% 8 mph 42 % 1017 mb 0 mm/h
Tomorrow 4:00 pm
Wetter-Symbol
17° | 17°°C 0 mm 0% 10 mph 36 % 1016 mb 0 mm/h
Tomorrow 7:00 pm
Wetter-Symbol
13° | 13°°C 0 mm 0% 12 mph 57 % 1016 mb 0 mm/h
Tomorrow 10:00 pm
Wetter-Symbol
10° | 10°°C 0 mm 0% 9 mph 74 % 1015 mb 0 mm/h
Name Preis24H (%)
Bitcoin(BTC)
€75,680.92
2.51%
Ethereum(ETH)
€1,368.66
-0.72%
Fesseln(USDT)
€0.87
0.01%
XRP(XRP)
€1.80
0.05%
Solana(SOL)
€118.51
-0.50%
USDC(USDC)
€0.87
-0.01%
Dogecoin(DOGE)
€0.137443
1.65%
Shiba Inu(SHIB)
€0.000010
-0.29%
Pepe(PEPE)
€0.000007
2.49%
Nach oben scrollen