CVE-2024-0012CISA KEV: Actively Exploited

Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability

Published Nov 18, 2024·Updated Nov 18, 2024

Description

Palo Alto Networks PAN-OS contains an authentication bypass vulnerability in the web-based management interface for several PAN-OS products, including firewalls and VPN concentrators.

Public Exploits & PoCs10 found

PoC: PanOsExploitMultitool

Exploitation and Post-Exploitation Multitool for Palo Alto PAN-OS Systems affected by vulnerabilities CVE-2024-0012 and CVE-2024-9474

PoC: cve-2024-0012-gui-poc

Python script for CVE-2024-0012 / CVE-2024-9474 exploit

PoC: CVE-2024-0012_CVE-2024-9474_PoC

This PoC is targeting vulnerabilities in Palo Alto PAN-OS, specifically CVE-2024-0012 and CVE-2024-9474. This script automates the exploitation process, including payload creation, chunked delivery, and seamless command execution.

PoC: CVE-2024-0012

CVE-2024-0012 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) RCE POC

PoC: cve-2024-0012-poc

CVE-2024-0012是Palo Alto Networks PAN-OS软件中的一个身份验证绕过漏洞。该漏洞允许未经身份验证的攻击者通过网络访问管理Web界面,获取PAN-OS管理员权限,从而执行管理操作、篡改配置,或利用其他需要身份验证的特权提升漏洞(如CVE-2024-9474)

PoC: cve-2024-0012-poc

CVE-2024-0012是Palo Alto Networks PAN-OS软件中的一个身份验证绕过漏洞。该漏洞允许未经身份验证的攻击者通过网络访问管理Web界面,获取PAN-OS管理员权限,从而执行管理操作、篡改配置,或利用其他需要身份验证的特权提升漏洞(如CVE-2024-9474)

PoC: CVE-2024-0012-poc

CVE-2024-0012批量检测脚本

PoC: CVE-2024-0012

Palo Alto CVE-2024-0012 Exploit POC

PoC: CVE-2024-0012

PANW NGFW CVE-2024-0012

PoC: CVE-2024-0012-POC

CVE-2024-0012 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) RCE POC

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free