Palo Alto Expedition up to 1.2.95 Device Configuration os command injection

Summaryinfo

A vulnerability has been found in Palo Alto Expedition up to 1.2.95 and classified as critical. The impacted element is an unknown function of the component Device Configuration Handler. Performing a manipulation results in os command injection. This vulnerability is identified as CVE-2024-9464. The attack can be initiated remotely. Additionally, an exploit exists. The affected component should be upgraded.

Detailsinfo

A vulnerability classified as critical has been found in Palo Alto Expedition up to 1.2.95. This affects an unknown part of the component Device Configuration Handler. The manipulation with an unknown input leads to a os command injection vulnerability. CWE is classifying the issue as CWE-78. The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:

An OS command injection vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to run arbitrary OS commands as root in Expedition, resulting in disclosure of usernames, cleartext passwords, device configurations, and device API keys of PAN-OS firewalls.

It is possible to read the advisory at security.paloaltonetworks.com. This vulnerability is uniquely identified as CVE-2024-9464 since 10/03/2024. The exploitability is told to be easy. It is possible to initiate the attack remotely. Technical details are unknown but a public exploit is available. The attack technique deployed by this issue is T1202 according to MITRE ATT&CK.

The exploit is shared for download at packetstormsecurity.com. It is declared as highly functional.

Upgrading to version 1.2.96 eliminates this vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Productinfo

Vendor

• Palo Alto

Name

• Expedition

Version

• 1.2.0
• 1.2.1
• 1.2.2
• 1.2.3
• 1.2.4
• 1.2.5
• 1.2.6
• 1.2.7
• 1.2.8
• 1.2.9
• 1.2.10
• 1.2.11
• 1.2.12
• 1.2.13
• 1.2.14
• 1.2.15
• 1.2.16
• 1.2.17
• 1.2.18
• 1.2.19
• 1.2.20
• 1.2.21
• 1.2.22
• 1.2.23
• 1.2.24
• 1.2.25
• 1.2.26
• 1.2.27
• 1.2.28
• 1.2.29
• 1.2.30
• 1.2.31
• 1.2.32
• 1.2.33
• 1.2.34
• 1.2.35
• 1.2.36
• 1.2.37
• 1.2.38
• 1.2.39
• 1.2.40
• 1.2.41
• 1.2.42
• 1.2.43
• 1.2.44
• 1.2.45
• 1.2.46
• 1.2.47
• 1.2.48
• 1.2.49
• 1.2.50
• 1.2.51
• 1.2.52
• 1.2.53
• 1.2.54
• 1.2.55
• 1.2.56
• 1.2.57
• 1.2.58
• 1.2.59
• 1.2.60
• 1.2.61
• 1.2.62
• 1.2.63
• 1.2.64
• 1.2.65
• 1.2.66
• 1.2.67
• 1.2.68
• 1.2.69
• 1.2.70
• 1.2.71
• 1.2.72
• 1.2.73
• 1.2.74
• 1.2.75
• 1.2.76
• 1.2.77
• 1.2.78
• 1.2.79
• 1.2.80
• 1.2.81
• 1.2.82
• 1.2.83
• 1.2.84
• 1.2.85
• 1.2.86
• 1.2.87
• 1.2.88
• 1.2.89
• 1.2.90
• 1.2.91
• 1.2.92
• 1.2.93
• 1.2.94
• 1.2.95

License

• commercial

Website

• Vendor: https://www.paloaltonetworks.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Discussion