CVE-2024-3384

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 10, 2024

CWE ID 1286

Summary

CVE-2024-3384 is a vulnerability in Palo Alto Networks PAN-OS software that allows a remote attacker to reboot PAN-OS firewalls through Windows New Technology LAN Manager (NTLM) packets. The affected products include qz3CKF, os4I3-, qz2zP2, and vUKp1G. To remediate the vulnerability, manual intervention is required to bring the firewall back online after it enters maintenance mode due to repeated attacks. The potential danger posed to an organization is high, as the attacker can disrupt the firewall's availability, impacting network security. The base severity of this vulnerability is rated as HIGH by Palo Alto Networks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vTwah_
https://www.cve.org/CVERecord?id=CVE-2024-3384
https://nvd.nist.gov/vuln/detail/CVE-2024-3384

Back to Vulnerability Database

CVE-2024-3384

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations