Palo Alto Networks PAN-OS Vulnerability: Modification of User-ID Groups
CVE-2024-3383

9.1CRITICAL

Key Information:

Vendor: Palo Alto Networks
Status: Pan-os; Cloud Ngfw; Prisma Access
Vendor: CVE Published:; 10 April 2024

Badges

👾 Exploit Exists

Summary

A flaw in the handling of data from Cloud Identity Engine (CIE) agents in Palo Alto Networks' PAN-OS software can result in the unauthorized modification of User-ID groups. This vulnerability poses a significant risk as it may result in users either being wrongly denied access to essential network resources or granted access contrary to existing Security Policy rules. The implications of this vulnerability warrant immediate attention from organizations utilizing affected versions of PAN-OS to ensure that user access remains appropriately regulated.

Affected Version(s)

PAN-OS 11.0.0 < 11.0.3

PAN-OS 10.2.0 < 10.2.5

PAN-OS 10.1.0 < 10.1.11

References

https://security.paloaltonetworks.com/CVE-2024-3383

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Aug 9, 2024
Vulnerability published
Apr 10, 2024
Vulnerability Reserved
Apr 5, 2024

Credit

Palo Alto Networks thanks Rodgers Moore, CCIE# 8153 of Insight.com, for discovering and reporting this issue.