Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-3393

A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Published

2024-12-27T10:15:17.270

Last Modified

2025-01-14T16:02:30.133

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-754
Type: Primary
CWE-754

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	paloaltonetworks	pan-os	≤ 11.1.1	Yes
Operating System	paloaltonetworks	pan-os	< 11.2.3	Yes
Operating System	paloaltonetworks	pan-os	10.1.14	Yes
Operating System	paloaltonetworks	pan-os	10.1.14	Yes
Operating System	paloaltonetworks	pan-os	10.1.14	Yes
Operating System	paloaltonetworks	pan-os	10.1.14	Yes
Operating System	paloaltonetworks	pan-os	10.2.8	Yes
Operating System	paloaltonetworks	pan-os	10.2.8	Yes
Operating System	paloaltonetworks	pan-os	10.2.8	Yes
Operating System	paloaltonetworks	pan-os	10.2.8	Yes
Operating System	paloaltonetworks	pan-os	10.2.8	Yes
Operating System	paloaltonetworks	pan-os	10.2.8	Yes
Operating System	paloaltonetworks	pan-os	10.2.8	Yes
Operating System	paloaltonetworks	pan-os	10.2.9	Yes
Operating System	paloaltonetworks	pan-os	10.2.9	Yes
Operating System	paloaltonetworks	pan-os	10.2.9	Yes
Operating System	paloaltonetworks	pan-os	10.2.9	Yes
Operating System	paloaltonetworks	pan-os	10.2.9	Yes
Operating System	paloaltonetworks	pan-os	10.2.9	Yes
Operating System	paloaltonetworks	pan-os	10.2.9	Yes
Operating System	paloaltonetworks	pan-os	10.2.10	Yes
Operating System	paloaltonetworks	pan-os	10.2.10	Yes
Operating System	paloaltonetworks	pan-os	10.2.10	Yes
Operating System	paloaltonetworks	pan-os	10.2.10	Yes
Operating System	paloaltonetworks	pan-os	10.2.10	Yes
Operating System	paloaltonetworks	pan-os	10.2.10	Yes
Operating System	paloaltonetworks	pan-os	10.2.10	Yes
Operating System	paloaltonetworks	pan-os	10.2.10	Yes
Operating System	paloaltonetworks	pan-os	10.2.11	Yes
Operating System	paloaltonetworks	pan-os	10.2.11	Yes
Operating System	paloaltonetworks	pan-os	10.2.11	Yes
Operating System	paloaltonetworks	pan-os	10.2.11	Yes
Operating System	paloaltonetworks	pan-os	10.2.11	Yes
Operating System	paloaltonetworks	pan-os	10.2.11	Yes
Operating System	paloaltonetworks	pan-os	10.2.11	Yes
Operating System	paloaltonetworks	pan-os	10.2.12	Yes
Operating System	paloaltonetworks	pan-os	10.2.12	Yes
Operating System	paloaltonetworks	pan-os	10.2.12	Yes
Operating System	paloaltonetworks	pan-os	10.2.12	Yes
Operating System	paloaltonetworks	pan-os	10.2.13	Yes
Operating System	paloaltonetworks	pan-os	10.2.13	Yes
Operating System	paloaltonetworks	pan-os	11.1.2	Yes
Operating System	paloaltonetworks	pan-os	11.1.2	Yes
Operating System	paloaltonetworks	pan-os	11.1.2	Yes
Operating System	paloaltonetworks	pan-os	11.1.2	Yes
Operating System	paloaltonetworks	pan-os	11.1.2	Yes
Operating System	paloaltonetworks	pan-os	11.1.2	Yes
Operating System	paloaltonetworks	pan-os	11.1.2	Yes
Operating System	paloaltonetworks	pan-os	11.1.2	Yes
Operating System	paloaltonetworks	pan-os	11.1.3	Yes
Operating System	paloaltonetworks	pan-os	11.1.3	Yes
Operating System	paloaltonetworks	pan-os	11.1.3	Yes
Operating System	paloaltonetworks	pan-os	11.1.3	Yes
Operating System	paloaltonetworks	pan-os	11.1.3	Yes
Operating System	paloaltonetworks	pan-os	11.1.3	Yes
Operating System	paloaltonetworks	pan-os	11.1.3	Yes
Operating System	paloaltonetworks	pan-os	11.1.4	Yes
Operating System	paloaltonetworks	pan-os	11.1.4	Yes
Operating System	paloaltonetworks	pan-os	11.1.4	Yes
Application	paloaltonetworks	prisma_access	-	Yes
Operating System	paloaltonetworks	pan-os	< 11.2.3	No
Operating System	paloaltonetworks	pan-os	10.2.8	No
Operating System	paloaltonetworks	pan-os	10.2.8	No
Operating System	paloaltonetworks	pan-os	10.2.8	No
Operating System	paloaltonetworks	pan-os	10.2.8	No
Operating System	paloaltonetworks	pan-os	10.2.8	No
Operating System	paloaltonetworks	pan-os	10.2.8	No
Operating System	paloaltonetworks	pan-os	10.2.8	No
Operating System	paloaltonetworks	pan-os	10.2.8	No
Operating System	paloaltonetworks	pan-os	10.2.9	No
Operating System	paloaltonetworks	pan-os	10.2.9	No
Operating System	paloaltonetworks	pan-os	10.2.9	No
Operating System	paloaltonetworks	pan-os	10.2.9	No
Operating System	paloaltonetworks	pan-os	10.2.9	No
Operating System	paloaltonetworks	pan-os	10.2.9	No
Operating System	paloaltonetworks	pan-os	10.2.9	No
Operating System	paloaltonetworks	pan-os	10.2.10	No
Operating System	paloaltonetworks	pan-os	10.2.10	No
Operating System	paloaltonetworks	pan-os	10.2.10	No
Operating System	paloaltonetworks	pan-os	10.2.10	No
Operating System	paloaltonetworks	pan-os	10.2.10	No
Operating System	paloaltonetworks	pan-os	10.2.10	No
Operating System	paloaltonetworks	pan-os	10.2.10	No
Operating System	paloaltonetworks	pan-os	10.2.10	No

References

https://security.paloaltonetworks.com/CVE-2024-3393 Vendor Advisory ([email protected])