CVE-2024-5910

Опубликовано: 10 июл. 2024

Источник: nvd

CVSS3: 9.8

EPSS Критический

Описание

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition.

Note: Expedition is a tool aiding in configuration migration, tuning, and enrichment. Configuration secrets, credentials, and other data imported into Expedition is at risk due to this issue.

Ссылки

https://security.paloaltonetworks.com/CVE-2024-5910
Vendor Advisory
https://security.paloaltonetworks.com/CVE-2024-5910
Vendor Advisory
https://www.horizon3.ai/attack-research/palo-alto-expedition-from-n-day-to-full-compromise
Exploit
Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-5910
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:paloaltonetworks:expedition:*:*:*:*:*:*:*:*

Версия от 1.2.0 (включая) до 1.2.92 (исключая)

EPSS

Процентиль: 100%

0.91029

Критический

9.8 Critical

CVSS3

Дефекты

CWE-306

Связанные уязвимости

GHSA-px3f-fc5j-2fqv

CVSS3: 9.8

github

больше 1 года назад

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. Note: Expedition is a tool aiding in configuration migration, tuning, and enrichment. Configuration secrets, credentials, and other data imported into Expedition is at risk due to this issue.

BDU:2024-06369

CVSS3: 9.8

fstec

больше 1 года назад

Уязвимость инструмента миграции конфигурации Palo Alto Networks Expedition, связанная с отсутствием аутентификации для критичной функции, позволяющая нарушителю получить учетную запись администратора

EPSS

Процентиль: 100%

0.91029

Критический

9.8 Critical

CVSS3

Дефекты

CWE-306