ГлавнаяУязвимости → CVE-2024-9463
7.5высокая

CVE-2024-9463

→ есть в БДУ: BDU:2024-08109 (на русском)
Описание (на английском; русское — в БДУ выше)

An OS command injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to run arbitrary OS commands as root in Expedition, resulting in disclosure of usernames, cleartext passwords, device configurations, and device API keys of PAN-OS firewalls.

Затрагиваемое ПО
Paloaltonetworks Expedition
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://security.paloaltonetworks.com/PAN-SA-2024-0010https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-9463