daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2024-0012.yaml

patch-16
johnk3r 2024-11-19 15:07:12 -03:00 committed by GitHub
parent 00f9a4105d
commit af5c04151f
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
http/cves/2024/CVE-2024-0012.yaml
View File

@ -4,6 +4,11 @@ info:
name: Authentication Bypass in the Management Web Interface name: Authentication Bypass in the Management Web Interface
author: johnk3r author: johnk3r
severity: critical severity: critical
description: |
An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit other authenticated privilege escalation vulnerabilities
reference:
- https://security.paloaltonetworks.com/CVE-2024-0012
- https://labs.watchtowr.com/pots-and-pans-aka-an-sslvpn-palo-alto-pan-os-cve-2024-0012-and-cve-2024-9474/
tags: cve2024,cve,paloalto,globalprotect tags: cve2024,cve,paloalto,globalprotect
requests: requests: