← Volver a CVEs
CVE-2024-5910
CRITICALCISA KEV9.8
Descripcion
Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. Note: Expedition is a tool aiding in configuration migration, tuning, and enrichment. Configuration secrets, credentials, and other data imported into Expedition is at risk due to this issue.
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado7/10/2024
Ultima modificacion11/4/2025
Fuentekev
Avistamientos honeypot0
CISA KEV
VendedorPalo Alto Networks
ProductoExpedition
Nombre vulnerabilidadPalo Alto Networks Expedition Missing Authentication Vulnerability
Fecha inclusion KEV2024-11-07
Fecha limite remediacion2024-11-28
Uso en ransomwareUnknown
Productos afectados
paloaltonetworks:expedition
Debilidades (CWE)
CWE-306CWE-306
Referencias
https://security.paloaltonetworks.com/CVE-2024-5910(psirt@paloaltonetworks.com)
https://security.paloaltonetworks.com/CVE-2024-5910(af854a3a-2127-422b-91ae-364da2661108)
https://www.horizon3.ai/attack-research/palo-alto-expedition-from-n-day-to-full-compromise(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-5910(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.