CVE-2024-3388
PAN-OS: User Impersonation in GlobalProtect SSL VPN
Severity Score
4.1
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enables an authenticated attacker to impersonate another user and send network packets to internal assets. However, this vulnerability does not allow the attacker to receive response packets from those internal assets.
*Credits:
Palo Alto Networks thanks Ta-Lun Yen of TXOne Networks for discovering and reporting this issue.
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-04-05 CVE Reserved
- 2024-04-10 CVE Published
- 2024-04-11 EPSS Updated
- 2024-06-29 First Exploit
- 2024-08-01 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-269: Improper Privilege Management
- CWE-863: Incorrect Authorization
CAPEC
- CAPEC-194: Fake the Source of Data
References (2)
| URL | Tag | Source |
|---|---|---|
| https://security.paloaltonetworks.com/CVE-2024-3388 |
| URL | Date | SRC |
|---|---|---|
| https://github.com/Grantzile/PoC-CVE-2024-33883 | 2024-06-29 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Palo Alto Networks Search vendor "Palo Alto Networks" | PAN-OS Search vendor "Palo Alto Networks" for product "PAN-OS" | >= 8.1.0 < 8.1.26 Search vendor "Palo Alto Networks" for product "PAN-OS" and version " >= 8.1.0 < 8.1.26" | en |
Affected
| ||||||
| Palo Alto Networks Search vendor "Palo Alto Networks" | PAN-OS Search vendor "Palo Alto Networks" for product "PAN-OS" | >= 9.1.0 < 9.1.17 Search vendor "Palo Alto Networks" for product "PAN-OS" and version " >= 9.1.0 < 9.1.17" | en |
Affected
| ||||||
| Palo Alto Networks Search vendor "Palo Alto Networks" | PAN-OS Search vendor "Palo Alto Networks" for product "PAN-OS" | >= 11.0.0 < 11.0.3 Search vendor "Palo Alto Networks" for product "PAN-OS" and version " >= 11.0.0 < 11.0.3" | en |
Affected
| ||||||
| Palo Alto Networks Search vendor "Palo Alto Networks" | Prisma Access Search vendor "Palo Alto Networks" for product "Prisma Access" | >= 10.2.0 < 10.2.4 Search vendor "Palo Alto Networks" for product "Prisma Access" and version " >= 10.2.0 < 10.2.4" | en |
Affected
| ||||||