Security Update – Palo Alto Firewall Vulnerability

Security Update: Palo Alto Firewall Vulnerability

Vulnerability Name: Palo Alto Firewall Vulnerability

Platform or Software Package(s) Affected: PAN-OS (CVE-2024-0012 and CVE-2024-9474)

Criticality: Highly Critical (9.3/10)

Recommended Action: Verify the next-generation firewall management interface is not accessible from the internet. Also, review and enforce Secure Administrative Access by ensuring only authorized personnel with secure and unique passwords, as well as multifactor authentication, can access the administrative console. As always, monitor all security logs for suspicious activity.

Overview of Concern and Overview of Remediation:

Over 2,000 devices were hijacked/compromised last week just one day after Palo Alto Networks released patches for known security holes in their PAN-OS operating system. An attacker with network access to the administrative interface can exploit the above two vulnerabilities to escalate privileges and gain administrative access, allowing for arbitrary code execution and administrative functions. Anyone utilizing a Palo Alto Firewall is highly encouraged to immediately take the above-noted recommended action.

Please contact Jeremy Burris at S.R. Snodgrass, P.C. with any questions (jburris@srsnodgrass.com).

Sincerely,

S.R. Snodgrass, P.C.

d/b/a S.R. Snodgrass, A.C. in West Virginia