CISA-2024-9472
Reported by palo_alto · Published November 14, 2024
A null pointer dereference in Palo Alto Networks PAN-OS software on PA-800 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series hardware platforms when Decryption policy is enabled allows an unauthenticated attacker to crash PAN-OS by sending specific traffic through the data plane, resulting in a denial of service (DoS) condition. Repeated attempts to trigger this condition will result in PAN-OS entering maintenance mode. Palo Alto Networks VM-Series, Cloud NGFW, and Prisma Access are not affected. This issue only affects PA-800 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series running these specific versions of PAN-OS: * 10.2.7-h12 * 10.2.8-h10 * 10.2.9-h9 * 10.2.9-h11 * 10.2.10-h2 * 10.2.10-h3 * 10.2.11 * 10.2.11-h1 * 10.2.11-h2 * 10.2.11-h3 * 11.1.2-h9 * 11.1.2-h12 * 11.1.3-h2 * 11.1.3-h4 * 11.1.3-h6 * 11.2.2 * 11.2.2-h1
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Palo Alto Networks | Cloud NGFW | All |
| Palo Alto Networks | PAN-OS | 11.2.2, 11.1.2-h9, 11.0.0 |
| Palo Alto Networks | Prisma Access | All |
| Palo Alto Networks | Prisma Access | *, All |
| Palo Alto Networks | PAN-OS | 11.1.2-h9, 10.1.0, 11.0.0 |
| Palo Alto Networks | Cloud NGFW | All, * |
Timeline
- Nov 14, 2024 CVE Published
- Nov 14, 2024 CVE Updated