Critical Vulnerabilities Disclosed in Palo Alto Networks PAN-OS Software

Critical Vulnerabilities Disclosed in Palo Alto Networks PAN-OS Software

First seen 24 Apr 2026, 22:03 UTC nvd.nist.govwww.picussecurity.comHkcertCybersecuritynewssecurity.paloaltonetworks.com+48 88% similarity 72.9

Article Content

Browse articles
ThreatCluster

On November 18, 2024, Palo Alto Networks disclosed two critical vulnerabilities in PAN-OS: CVE-2024-0012 and CVE-2024-9474. CVE-2024-0012 is an authentication bypass vulnerability that allows unauthenticated attackers to gain administrator privileges via the management web interface. CVE-2024-9474 is a privilege escalation vulnerability that enables authenticated users to execute commands with root privileges. Both vulnerabilities can be exploited together, posing a significant risk to organizations using affected PAN-OS versions. The vulnerabilities affect PAN-OS versions earlier than 11.2.4-h1, 11.1.5-h1, 11.0.6-h1, and 10.2.12-h2. Organizations are urged to patch their systems immediately to mitigate the risks. The vulnerabilities have been actively exploited in the wild, emphasizing the urgency of remediation. Security professionals should refer to CISA's guidance for further recommendations.

Key Points: • CVE-2024-0012 allows unauthenticated access to PAN-OS administrator privileges. • CVE-2024-9474 enables privilege escalation for authenticated users on PAN-OS. • Both vulnerabilities are actively exploited and require immediate patching.

ThreatCluster AI

Timeline

2024-11-18
Palo Alto Networks disclosed CVE-2024-0012 and CVE-2024-9474
2024-11-18
CVE-2024-0012 added to CISA KEV for active exploitation
2024-11-18
CVE-2024-9474 added to CISA KEV for active exploitation
2024-11-19
First public PoC for CVE-2024-0012 released
2024-11-20
First public PoC for CVE-2024-9474 released

Community

Browse all →