Description

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. Note: Expedition is a tool aiding in configuration migration, tuning, and enrichment. Configuration secrets, credentials, and other data imported into Expedition is at risk due to this issue.

Related CPE's

Could not find any relations

References

https://security.paloaltonetworks.com/CVE-2024-5910

Weaknesses

[email protected]

Secondary
CWE-306

CVSS impact metrics

Missing metrics for CVSS V

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Awaiting analysis

Published

2024-07-10T19:15:11.390

3 months ago

Last modified

2024-07-11T13:05:54.930

3 months ago