Description

An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and crash the Panorama. Repeated attacks eventually cause the Panorama to enter maintenance mode, which requires manual intervention to bring the Panorama back online.

Related CPE's

Could not find any relations

References

https://security.paloaltonetworks.com/CVE-2024-5911

https://security.paloaltonetworks.com/CVE-2024-5911

Weaknesses

[email protected]

Secondary
CWE-434

CVSS impact metrics

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber

7 · High

Information

Source identifier

[email protected]

Vulnerability status

Awaiting analysis

Published

2024-07-10T17:15:11.547Z

1 year ago

Last modified

2024-11-21T08:48:34.027Z

1 year ago