Risk Scores
EPSS Score
94.18%
99.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| PaloAlto Networks | PaloAlto Networks PAN-OS | |
| PaloAlto Networks | PaloAlto Networks PAN-OS <10.1.14-h6 | |
| PaloAlto Networks | PaloAlto Networks PAN-OS <11.2.4-h1 | |
| PaloAlto Networks | PaloAlto Networks PAN-OS <11.0.6-h1 | |
| PaloAlto Networks | PaloAlto Networks PAN-OS <10.2.12-h2 | |
| PaloAlto Networks | PaloAlto Networks PAN-OS <11.1.5-h1 |
Timeline
- Aug 5, 2023 CrowdSec Sighting
- Sep 5, 2023 CrowdSec Sighting
- Nov 10, 2024 CVE Published
- Nov 18, 2024 CISA KEV Added
- Nov 18, 2024 Coalition ESS Score
- Nov 19, 2024 PoC Published
- Nov 19, 2024 EPSS Score
- Nov 19, 2024 Coalition ESS Score
- Nov 19, 2024 Coalition ESS Score
- Nov 20, 2024 EPSS Score
- Nov 21, 2024 CVE Updated
- Dec 7, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3398.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3398 advisory
- https://security.paloaltonetworks.com/PAN-SA-2024-0015 advisory
- https://security.paloaltonetworks.com/CVE-2024-0012 advisory
- https://security.paloaltonetworks.com/CVE-2024-9474 advisory
- https://unit42.paloaltonetworks.com/cve-2024-0012-cve-2024-9474/ advisory
- https://labs.watchtowr.com/pots-and-pans-aka-an-sslvpn-palo-alto-pan-os-cve-2024-0012-and-cve-2024-9474/ advisory