VDB

CVE-2024-3385

CVE-2024-3385 PUBLISHED

In PaloAlto Networks PAN-OS existieren mehrere Schwachstellen. Diese bestehen aufgrund eines Speicherfehlers, eines Verarbeitungsproblems von Windows New Technology LAN Manager (NTLM)-Paketen und eines Fehlers im Paketverarbeitungsmechanismus. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen.

EPSS 3.17% · 87.2th percentile

Risk Scores

EPSS Score
3.17%
87.2th percentile

Affected Products

VendorProductVersions
PaloAlto NetworksPaloAlto Networks PAN-OS 10.0
PaloAlto NetworksPaloAlto Networks PAN-OS 10.2
PaloAlto NetworksPaloAlto Networks PAN-OS 11.1
PaloAlto NetworksPaloAlto Networks PAN-OS 9.1
PaloAlto NetworksPaloAlto Networks PAN-OS 11.0
PaloAlto NetworksPaloAlto Networks PAN-OS 8.1
PaloAlto NetworksPaloAlto Networks PAN-OS 9.0
PaloAlto NetworksPaloAlto Networks PAN-OS 10.1

Timeline

  • Apr 10, 2024 CVE Published
  • Apr 11, 2024 EPSS Score
  • Apr 15, 2024 PoC Published
  • May 31, 2024 EPSS Score
  • Jun 25, 2024 EPSS Score
  • Aug 14, 2024 EPSS Score
  • Sep 8, 2024 EPSS Score
  • Oct 4, 2024 Coalition ESS Score
  • Oct 29, 2024 EPSS Score
  • Nov 23, 2024 EPSS Score
  • Jan 13, 2025 EPSS Score
  • Jan 24, 2025 Coalition ESS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›