Security News > 2024 > December > Hackers exploit DoS flaw to disable Palo Alto Networks firewalls

Hackers exploit DoS flaw to disable Palo Alto Networks firewalls

2024-12-27 16:33

Palo Alto Networks is warning that hackers are exploiting the CVE-2024-3393 denial of service vulnerability to disable firewall protections by forcing it to reboot. [...]

News URL

https://www.bleepingcomputer.com/news/security/hackers-exploit-dos-flaw-to-disable-palo-alto-networks-firewalls/

#DOS #exploit #firewall #hacker #paloalto #CVE-2024-3393

Related news

Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit (source)
1000s of Palo Alto Networks firewalls hijacked as miscreants exploit critical hole (source)
Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails (source)
High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables (source)
Palo Alto Networks firewalls, Expedition under attack (CVE-2024-9463, CVE-2024-9465) (source)
Attackers are exploiting 2 zero-days in Palo Alto Networks firewalls (CVE-2024-0012, CVE-2024-9474) (source)
Palo Alto Networks patches two firewall zero-days used in attacks (source)
Chinese hackers exploit Fortinet VPN zero-day to steal credentials (source)
Chinese Hackers Exploit T-Mobile and Other U.S. Telecoms in Broader Espionage Campaign (source)
Palo Alto Networks tackles firewall-busting zero-days with critical patches (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2024-12-27	CVE-2024-3393	A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall.	0.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.