CVE-2024-5910

CRITICALCISA KEV

9.8

Beschreibung

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. Note: Expedition is a tool aiding in configuration migration, tuning, and enrichment. Configuration secrets, credentials, and other data imported into Expedition is at risk due to this issue.

CVE Details

CVSS v3.1 Bewertung9.8

SchweregradCRITICAL

CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AngriffsvektorNETWORK

KomplexitatLOW

Erforderliche PrivilegienNONE

BenutzerinteraktionNONE

Veroffentlicht7/10/2024

Zuletzt geandert11/4/2025

Quellekev

Honeypot-Sichtungen0

CISA KEV

HerstellerPalo Alto Networks

ProduktExpedition

SchwachstellennamePalo Alto Networks Expedition Missing Authentication Vulnerability

KEV Aufnahmedatum2024-11-07

Behebungsfrist2024-11-28

Ransomware-NutzungUnknown

Betroffene Produkte

paloaltonetworks:expedition

Schwachen (CWE)

CWE-306CWE-306

Referenzen

https://security.paloaltonetworks.com/CVE-2024-5910(psirt@paloaltonetworks.com)

https://security.paloaltonetworks.com/CVE-2024-5910(af854a3a-2127-422b-91ae-364da2661108)

https://www.horizon3.ai/attack-research/palo-alto-expedition-from-n-day-to-full-compromise(af854a3a-2127-422b-91ae-364da2661108)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-5910(134c704f-9b21-4f2e-91b3-4a467353bcc0)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.