Description
Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. Note: Expedition is a tool aiding in configuration migration, tuning, and enrichment. Configuration secrets, credentials, and other data imported into Expedition is at risk due to this issue.
References
https://security.paloaltonetworks.com/CVE-2024-5910
https://security.paloaltonetworks.com/CVE-2024-5910
https://www.horizon3.ai/attack-research/palo-alto-expedition-from-n-day-to-full-compromise
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-5910
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 · Critical
Information
Source identifier
Vulnerability status
Analyzed
Published
2024-07-10T17:15:11.390Z
1 year agoLast modified
2025-11-04T15:48:52.637Z
4 months ago