PAN-OS GlobalProtect Command Injection Vulnerability

Fortiguard Security Advisory

The on-going attack on PAN-OS GlobalProtect devices identified as CVE-2024-3400 allows a malicious actor to remotely exploit an unauthenticated OS Command Injection vulnerability. Once established, the attacker can further collect configurations, deliver malware payloads and move laterally and internally.


Leave a Reply

Your email address will not be published. Required fields are marked *