The National Computer Emergency Response Team (NCERT) issued a stark warning about a indispensable vulnerability in Palo Alto Networks’ PAN-OS firewall software.
This flaw, recognized as CVE-2024-3400, approves attackers to remotely take whole manage of affected firewalls, bypassing any authentication measures. Firewalls are a essential security layer defending laptop networks, making this vulnerability a giant threat.
The advisory highlights that attackers are actively exploiting CVE-2024-3400. NCERT warns that PAN-OS variations 10.2, 11.0, and 11.1 are susceptible, in particular when both the GlobalProtect gateway and system telemetry facets are enabled. Fortunately, Palo Alto Networks has launched hotfixes to tackle the issue. NCERT urges users to deploy these hotfixes immediately.
While permanent safety patches are forthcoming, the advisory outlines extra mitigation strategies. These include activating a specific Threat ID for users with Threat Prevention subscriptions, configuring vulnerability protection on unique interfaces, and disabling a particular telemetry feature.
NCERT emphasizes the significance of proactive network protection practices past this particular vulnerability. They advocate businesses many times assessment and update security configurations, consistently display network undertaking for suspicious behavior, and have a response diagram in region to correctly tackle protection incidents. Following these hints and applying the reachable hotfixes can notably minimize the hazard of being compromised.
