EN
EN DE
EN
EN DE
Contact Us
Sign Up
Topics
Finance & insurance
Trade
Industry
IT & Consulting
Tourism
Transport
Law
Public

Hackers exploit DoS flaw to disable Palo Alto Networks firewalls

0
Share:

Palo Alto Networks is warning that hackers are exploiting the CVE-2024-3393 denial of service vulnerability to disable firewall protections by forcing it to reboot.

Leveraging the security issue repeatedly, however, causes the device to enter maintenance mode and manual intervention is required to restore it to normal operations.

“A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall,” reads the advisory.

DoS bug is actively exploited

Palo Alto Networks says that exploiting the vulnerability is possible by an unauthenticated attacker that sends a specially crafted, malicious packet to an affected device.

The issue only impacts devices where ‘DNS Security’ logging is enabled, while the product versions affected by CVE-2024-3393 are shown below.

Versions

The vendor confirmed that the flaw is actively exploited, noting that customers experienced outages when their firewall blocked malicious DNS packets from attackers leveraging the issue.

The company has addressed the flaw in PAN-OS 10.1.14-h8, PAN-OS 10.2.10-h12, PAN-OS 11.1.5, PAN-OS 11.2.3, and subsequent releases.

However, it’s noted that PAN-OS 11.0, which is impacted by CVE-2024-3393, will not receive a patch because that version has reached its end-of-life (EOL) date on November 17.

Palo Alto Networks has also published workarounds and steps to mitigate the problem for those who cannot immediately update:

For unmanaged NGFWs, NGFWs managed by Panorama, or Prisma Access Managed by Panorama:

  1. Navigate to: Objects → Security Profiles → Anti-spyware → DNS Policies → DNS Security for each Anti-spyware profile.
  2. Change the Log Severity to “none” for all configured DNS Security categories.
  3. Commit the changes and revert the Log Severity settings after applying the fixes.

For NGFWs managed by Strata Cloud Manager (SCM):

  • Option 1: Disable DNS Security logging directly on each NGFW using the steps above.
  • Option 2: Disable DNS Security logging across all NGFWs in the tenant by opening a support case.

For Prisma Access managed by Strata Cloud Manager (SCM):

  1. Open a support case to disable DNS Security logging across all NGFWs in your tenant.
  2. If needed, request to expedite the Prisma Access tenant upgrade in the support case.

Source

Leave a Comment

Your email address will not be published. Required fields are marked *

loader-image
London, GB
1:28 pm, Jun 12, 2025
weather icon 22°C
L: 20° | H: 23°
overcast clouds
Humidity: 67 %
Pressure: 1011 mb
Wind: 15 mph E
Wind Gust: 0 mph
UV Index: 0
Precipitation: 0 mm
Clouds: 100%
Rain Chance: 0%
Visibility: 10 km
Sunrise: 4:43 am
Sunset: 9:17 pm
DailyHourly
Daily ForecastHourly Forecast
Today 10:00 pm
weather icon
20° | 23°°C 1 mm 100% 11 mph 76 % 1015 mb 0 mm/h
Tomorrow 10:00 pm
weather icon
16° | 28°°C 1 mm 100% 9 mph 93 % 1020 mb 0 mm/h
Sat Jun 14 10:00 pm
weather icon
16° | 23°°C 0.8 mm 80% 13 mph 98 % 1020 mb 0 mm/h
Sun Jun 15 10:00 pm
weather icon
13° | 21°°C 0.2 mm 20% 10 mph 85 % 1025 mb 0 mm/h
Mon Jun 16 10:00 pm
weather icon
13° | 24°°C 0 mm 0% 7 mph 86 % 1028 mb 0 mm/h
Today 4:00 pm
weather icon
23° | 24°°C 1 mm 100% 11 mph 63 % 1011 mb 0 mm/h
Today 7:00 pm
weather icon
24° | 25°°C 0.75 mm 75% 10 mph 66 % 1012 mb 0 mm/h
Today 10:00 pm
weather icon
20° | 20°°C 0 mm 0% 4 mph 76 % 1015 mb 0 mm/h
Tomorrow 1:00 am
weather icon
18° | 18°°C 0 mm 0% 3 mph 82 % 1016 mb 0 mm/h
Tomorrow 4:00 am
weather icon
16° | 16°°C 0 mm 0% 3 mph 84 % 1017 mb 0 mm/h
Tomorrow 7:00 am
weather icon
18° | 18°°C 0 mm 0% 6 mph 78 % 1019 mb 0 mm/h
Tomorrow 10:00 am
weather icon
22° | 22°°C 0 mm 0% 7 mph 58 % 1020 mb 0 mm/h
Tomorrow 1:00 pm
weather icon
26° | 26°°C 0 mm 0% 6 mph 47 % 1019 mb 0 mm/h
Weather from OpenWeatherMap
Name Price24H (%)
Bitcoin(BTC)
€92,274.69
-2.03%
Ethereum(ETH)
€2,348.74
-1.69%
Tether(USDT)
€0.86
0.02%
XRP(XRP)
€1.92
-3.52%
Solana(SOL)
€136.35
-3.67%
USDC(USDC)
€0.86
-0.01%
Dogecoin(DOGE)
€0.161709
-5.60%
Shiba Inu(SHIB)
€0.000011
-4.53%
Pepe(PEPE)
€0.000010
-4.24%
Peanut the Squirrel(PNUT)
€0.236997
-5.02%
Risikomonitor
Know and monitor IT vulnerabilities with just one click before it is too late.

Utility link

Useful link

Newsletter

Follow Us

Facebook Twitter Youtube Linkedin

© 2025 risikomonitor.com gmbh

Scroll to Top