June 4, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Grandoreiro Malware – Active IOCs
August 16, 2024
Multiple IBM Products Vulnerabilities
August 16, 2024
Grandoreiro Malware – Active IOCs
August 16, 2024
Multiple IBM Products Vulnerabilities
August 16, 2024
Severity
Medium
Analysis Summary
CVE-2024-5914 CVSS:7.3
Palo Alto Networks Cortex XSOAR could allow a remote attacker to execute arbitrary commands on the system, caused by a command injection vulnerability in CommonScripts Pack. An attacker could exploit this vulnerability to execute arbitrary commands within the context of an integration container.
CVE-2024-5916 CVSS:4.9
Palo Alto Networks PAN-OS could allow a remote authenticated attacker to obtain sensitive information, caused by an information exposure vulnerability. A read-only administrator who has access to the config log, can read secrets, passwords, and tokens to external systems.
CVE-2024-5915 CVSS:4.3
An unspecified error in Palo Alto Networks GlobalProtect app could allow a local attacker to gain elevated privileges on the system.
Impact
- Code Execution
- Privilege Escalation
Indicators of Compromise
CVE
- CVE-2024-5914
- CVE-2024-5916
- CVE-2024-5915
Affected Vendors
Palo Alto
Affected Products
- Palo Alto Networks Prisma Access
- Palo Alto Networks PAN-OS - 10.2
- Palo Alto Networks GlobalProtect App - 5.1
- Palo Alto Networks Cloud NGFW - Before 8/15
Remediation
Refer to Palo Alto Networks Security Advisories for patch, upgrade or suggested workaround information.
