{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-2433", "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "state": "PUBLISHED", "assignerShortName": "palo_alto", "dateReserved": "2024-03-13T16:19:27.817Z", "datePublished": "2024-03-13T17:51:45.578Z", "dateUpdated": "2024-08-12T18:54:08.465Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Panorama"], "product": "PAN-OS", "vendor": "Palo Alto Networks", "versions": [{"changes": [{"at": "9.0.17-h4", "status": "unaffected"}], "lessThan": "9.0.17-h4", "status": "affected", "version": "9.0", "versionType": "custom"}, {"changes": [{"at": "9.1.17", "status": "unaffected"}], "lessThan": "9.1.17", "status": "affected", "version": "9.1", "versionType": "custom"}, {"changes": [{"at": "10.1.12", "status": "unaffected"}], "lessThan": "10.1.12", "status": "affected", "version": "10.1", "versionType": "custom"}, {"changes": [{"at": "10.2.8", "status": "unaffected"}], "lessThan": "10.2.8", "status": "affected", "version": "10.2", "versionType": "custom"}, {"changes": [{"at": "11.0.3", "status": "unaffected"}], "lessThan": "11.0.3", "status": "affected", "version": "11.0", "versionType": "custom"}, {"status": "unaffected", "version": "11.1"}]}, {"defaultStatus": "unaffected", "product": "Cloud NGFW", "vendor": "Palo Alto Networks", "versions": [{"status": "unaffected", "version": "All"}]}, {"defaultStatus": "unaffected", "product": "Prisma Access", "vendor": "Palo Alto Networks", "versions": [{"status": "unaffected", "version": "All"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Palo Alto Networks thanks Omar Eissa (https://de.linkedin.com/in/oeissa) for discovering and reporting this issue."}], "datePublic": "2024-03-13T16:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. <br><br>\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.<br>"}], "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. \n\n\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.\n"}], "exploits": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.<br>"}], "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "shortName": "palo_alto", "dateUpdated": "2024-03-13T17:51:45.578Z"}, "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-2433"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "This issue is fixed in Panorama on PAN-OS 9.0.17-h4, PAN-OS 9.1.18, PAN-OS 10.1.12, PAN-OS 10.2.11, PAN-OS 11.0.4, and all later PAN-OS versions.<br>"}], "value": "This issue is fixed in Panorama on PAN-OS 9.0.17-h4, PAN-OS 9.1.18, PAN-OS 10.1.12, PAN-OS 10.2.11, PAN-OS 11.0.4, and all later PAN-OS versions.\n"}], "source": {"defect": ["PAN-181876", "PAN-218663"], "discovery": "EXTERNAL"}, "timeline": [{"lang": "en", "time": "2024-03-13T16:00:00.000Z", "value": "Initial publication"}], "title": "PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the effect of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at <a target=\"_blank\" rel=\"nofollow\" href=\"https://docs.paloaltonetworks.com/best-practices\">https://docs.paloaltonetworks.com/best-practices</a>.<br>"}], "value": "This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the effect of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at https://docs.paloaltonetworks.com/best-practices .\n"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T19:11:53.562Z"}, "title": "CVE Program Container", "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-2433", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "paloaltonetworks", "product": "pan-os", "cpes": ["cpe:2.3:a:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "9.0", "status": "affected", "lessThan": "9.0.17-h4", "versionType": "custom"}, {"version": "9.1", "status": "affected", "lessThan": "9.1.17", "versionType": "custom"}, {"version": "10.1", "status": "affected", "lessThan": "10.1.12", "versionType": "custom"}, {"version": "10.2", "status": "affected", "lessThan": "10.2.8", "versionType": "custom"}, {"version": "11.0", "status": "affected", "lessThan": "11.0.3", "versionType": "custom"}]}, {"vendor": "paloaltonetworks", "product": "pan-os", "cpes": ["cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "11.1.0", "status": "unaffected"}]}, {"vendor": "paloaltonetworks", "product": "cloud_ngfw", "cpes": ["cpe:2.3:a:paloaltonetworks:cloud_ngfw:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "*", "versionType": "custom"}]}, {"vendor": "paloaltonetworks", "product": "prisma_access", "cpes": ["cpe:2.3:a:paloaltonetworks:prisma_access:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "*", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-03-13T19:59:46.619572Z", "id": "CVE-2024-2433", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T18:54:08.465Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-2433", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T19:11:53.562Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-2433", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-03-13T19:59:46.619572Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*"], "vendor": "paloaltonetworks", "product": "pan-os", "versions": [{"status": "affected", "version": "9.0", "lessThan": "9.0.17-h4", "versionType": "custom"}, {"status": "affected", "version": "9.1", "lessThan": "9.1.17", "versionType": "custom"}, {"status": "affected", "version": "10.1", "lessThan": "10.1.12", "versionType": "custom"}, {"status": "affected", "version": "10.2", "lessThan": "10.2.8", "versionType": "custom"}, {"status": "affected", "version": "11.0", "lessThan": "11.0.3", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:*"], "vendor": "paloaltonetworks", "product": "pan-os", "versions": [{"status": "unaffected", "version": "11.1.0"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:paloaltonetworks:cloud_ngfw:*:*:*:*:*:*:*:*"], "vendor": "paloaltonetworks", "product": "cloud_ngfw", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "*"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:paloaltonetworks:prisma_access:*:*:*:*:*:*:*:*"], "vendor": "paloaltonetworks", "product": "prisma_access", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "*"}], "defaultStatus": "unaffected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T18:54:00.673Z"}}], "cna": {"title": "PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss", "source": {"defect": ["PAN-181876", "PAN-218663"], "discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Palo Alto Networks thanks Omar Eissa (https://de.linkedin.com/in/oeissa) for discovering and reporting this issue."}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Palo Alto Networks", "product": "PAN-OS", "versions": [{"status": "affected", "changes": [{"at": "9.0.17-h4", "status": "unaffected"}], "version": "9.0", "lessThan": "9.0.17-h4", "versionType": "custom"}, {"status": "affected", "changes": [{"at": "9.1.17", "status": "unaffected"}], "version": "9.1", "lessThan": "9.1.17", "versionType": "custom"}, {"status": "affected", "changes": [{"at": "10.1.12", "status": "unaffected"}], "version": "10.1", "lessThan": "10.1.12", "versionType": "custom"}, {"status": "affected", "changes": [{"at": "10.2.8", "status": "unaffected"}], "version": "10.2", "lessThan": "10.2.8", "versionType": "custom"}, {"status": "affected", "changes": [{"at": "11.0.3", "status": "unaffected"}], "version": "11.0", "lessThan": "11.0.3", "versionType": "custom"}, {"status": "unaffected", "version": "11.1"}], "platforms": ["Panorama"], "defaultStatus": "unaffected"}, {"vendor": "Palo Alto Networks", "product": "Cloud NGFW", "versions": [{"status": "unaffected", "version": "All"}], "defaultStatus": "unaffected"}, {"vendor": "Palo Alto Networks", "product": "Prisma Access", "versions": [{"status": "unaffected", "version": "All"}], "defaultStatus": "unaffected"}], "exploits": [{"lang": "en", "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.\n", "supportingMedia": [{"type": "text/html", "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.<br>", "base64": false}]}], "timeline": [{"lang": "en", "time": "2024-03-13T16:00:00.000Z", "value": "Initial publication"}], "solutions": [{"lang": "en", "value": "This issue is fixed in Panorama on PAN-OS 9.0.17-h4, PAN-OS 9.1.18, PAN-OS 10.1.12, PAN-OS 10.2.11, PAN-OS 11.0.4, and all later PAN-OS versions.\n", "supportingMedia": [{"type": "text/html", "value": "This issue is fixed in Panorama on PAN-OS 9.0.17-h4, PAN-OS 9.1.18, PAN-OS 10.1.12, PAN-OS 10.2.11, PAN-OS 11.0.4, and all later PAN-OS versions.<br>", "base64": false}]}], "datePublic": "2024-03-13T16:00:00.000Z", "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-2433"}], "workarounds": [{"lang": "en", "value": "This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the effect of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at https://docs.paloaltonetworks.com/best-practices .\n", "supportingMedia": [{"type": "text/html", "value": "This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the effect of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at <a target=\"_blank\" rel=\"nofollow\" href=\"https://docs.paloaltonetworks.com/best-practices\">https://docs.paloaltonetworks.com/best-practices</a>.<br>", "base64": false}]}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. \n\n\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.\n", "supportingMedia": [{"type": "text/html", "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. <br><br>\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.<br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management"}]}], "providerMetadata": {"orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "shortName": "palo_alto", "dateUpdated": "2024-03-13T17:51:45.578Z"}}}, "cveMetadata": {"cveId": "CVE-2024-2433", "state": "PUBLISHED", "dateUpdated": "2024-08-12T18:54:08.465Z", "dateReserved": "2024-03-13T16:19:27.817Z", "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "datePublished": "2024-03-13T17:51:45.578Z", "assignerShortName": "palo_alto"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "DB6AEA1F-5E27-41F9-A6E4-12BCD88F5688", "versionEndExcluding": "9.0.17", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "9F9FFBA6-7008-422B-9CF1-E37CA62081EB", "versionEndExcluding": "9.1.17", "versionStartIncluding": "9.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "AC18B586-8FE2-4362-9F60-490FCB52569F", "versionEndExcluding": "10.1.12", "versionStartIncluding": "10.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "C430BDF9-C688-47F9-BE38-D75460AE5B17", "versionEndExcluding": "10.2.8", "versionStartIncluding": "10.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "A6B9B8A6-A4A7-4C14-9D22-50FEF531F15D", "versionEndExcluding": "11.0.3", "versionStartIncluding": "11.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:-:*:*:*:*:*:*", "matchCriteriaId": "CDAE9753-EF8D-4B15-A73C-0EF56FE6C78C", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:h1:*:*:*:*:*:*", "matchCriteriaId": "2A142EE1-E516-4582-9A7E-6E4C74FB3991", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. \n\n\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.\n"}, {"lang": "es", "value": "Una vulnerabilidad de autorizaci\u00f3n inadecuada en el software Panorama de Palo Alto Networks permite que un administrador autenticado de solo lectura cargue archivos utilizando la interfaz web y llene completamente una de las particiones del disco con esos archivos cargados, lo que impide iniciar sesi\u00f3n en la interfaz web o descargarlos. PAN-OS, WildFire e im\u00e1genes de contenido. Este problema afecta \u00fanicamente a la interfaz web del plano de gesti\u00f3n; el plano de datos no se ve afectado."}], "id": "CVE-2024-2433", "lastModified": "2026-01-30T20:58:17.900", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "psirt@paloaltonetworks.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-03-13T18:15:08.893", "references": [{"source": "psirt@paloaltonetworks.com", "tags": ["Vendor Advisory"], "url": "https://security.paloaltonetworks.com/CVE-2024-2433"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://security.paloaltonetworks.com/CVE-2024-2433"}], "sourceIdentifier": "psirt@paloaltonetworks.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "psirt@paloaltonetworks.com", "type": "Secondary"}]}

{}

{}