What is the severity of CVE-2024-0012?

CVE-2024-0012 has a CVSS v3 score of 9.8, which is classified as Critical severity.

Is there an exploit available for CVE-2024-0012?

Yes, there are known exploits available for CVE-2024-0012. Immediate patching is recommended.

Is there a patch available for CVE-2024-0012?

Yes, patches are available for CVE-2024-0012. Check the vendor advisories for update instructions.

CVE-2024-0012 - CVE Details, Severity, and Analysis

CVE-2024-0012 - CVE Details, Severity, and Analysis | Strobes VI

Trend Analysis

Trending

Vulnerable Products

Vendor	Product
Paloaltonetworks	Pan Os

Advisories

CISA: Palo Alto Networks PAN-OS contains an authentication bypass vulnerability in the web-based management interface for several PAN-OS products, including firewalls and VPN concentrators.

GitHub Advisory NVD

Paloaltonetworks: An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit other authenticated privilege escalation vulnerabilities like CVE-2024-9474 (https://security.paloaltonetworks.com/CVE-2024-9474). The risk of this issue is greatly reduced if you secure access to the management web interface by restricting access to only trusted internal IP addresses according to our recommended best practice deployment guidelines (https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431). This issue is applicable only to PAN-OS 10.2, PAN-OS 11.0, PAN-OS 11.1, and PAN-OS 11.2 software on PA-Series, VM-Series, and CN-Series firewalls and on Panorama (virtual and M-Series). Cloud NGFW and Prisma Access are not impacted by this vulnerability.