CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Dec 9, 2024

CVE-2024-0012

High

CVSS 9.8EPSS 94.3%CISA KEVPoC AvailableRansomware

Description

Palo Alto Networks PAN-OS contains an authentication bypass vulnerability in the web-based management interface for several PAN-OS products, including firewalls and VPN concentrators.

CVSS Score

9.8/ 10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS — Exploit Probability

94.3%

Higher than 99.9% of all CVEs

Weakness Classification (CWE)

CWE-306CWE-306MITRE

Known Exploits

POC

https://labs.watchtowr.com/pots-and-pans-aka-an-sslvpn-palo-alto-pan-os-cve-2024-0012-and-cve-2024-9474/Exploit

Required Action

https://security.paloaltonetworks.com/CVE-2024-0012 ; https://nvd.nist.gov/vuln/detail/CVE-2024-0012

Risk Assessment

CRITICAL

In CISA KEV

Known exploit

Critical CVSS

High EPSS

Ransomware

Details

Severity: High
CVSS: 9.8
EPSS: 94.3%
CWE: CWE-306
Exploit: POC
CISA KEV: Yes
Ransomware: Known
Articles: 0

Timeline

Published

Nov 18, 2024

Added to KEV

Nov 18, 2024

Remediation Due

Dec 9, 2024

Affected Product

Palo Alto Networks

PAN-OS

View all Palo Alto Networks CVEs

External Links

NVD (NIST)CVE Details MITRE CVE