Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-8687

An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After the password or passcode is known, end users can uninstall, disable, or disconnect GlobalProtect even if the GlobalProtect app configuration would not normally permit them to do so.

Published

2024-09-11T17:15:14.157

Last Modified

2024-10-03T00:26:56.110

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses

Type: Secondary
CWE-497
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	paloaltonetworks	pan-os	< 8.1.25	Yes
Operating System	paloaltonetworks	pan-os	< 9.0.17	Yes
Operating System	paloaltonetworks	pan-os	< 9.1.16	Yes
Operating System	paloaltonetworks	pan-os	< 10.0.12	Yes
Operating System	paloaltonetworks	pan-os	< 10.1.9	Yes
Operating System	paloaltonetworks	pan-os	< 10.2.4	Yes
Operating System	paloaltonetworks	pan-os	11.0.0	Yes
Application	paloaltonetworks	globalprotect	< 5.1.12	Yes
Application	paloaltonetworks	globalprotect	< 5.2.13	Yes
Application	paloaltonetworks	globalprotect	< 6.0.7	Yes
Application	paloaltonetworks	globalprotect	< 6.1.2	Yes
Application	paloaltonetworks	globalprotect	6.2.0	Yes
Application	paloaltonetworks	prisma_access	-	Yes
Operating System	paloaltonetworks	pan-os	< 10.2.9	No

References

https://security.paloaltonetworks.com/CVE-2024-8687 Vendor Advisory ([email protected])