Vulnerabilities > CVE-2024-0008 - Insufficient Session Expiration vulnerability in Paloaltonetworks Pan-Os

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
paloaltonetworks
CWE-613

Summary

Web sessions in the management interface in Palo Alto Networks PAN-OS software do not expire in certain situations, making it susceptible to unauthorized access.

Vulnerable Configurations

Part Description Count
OS
Paloaltonetworks
139

Common Weakness Enumeration (CWE)