CVE-2024-0012

{"id": "CVE-2024-0012", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}], "cvssMetricV40": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "USER", "baseScore": 9.3, "Automatable": "NO", "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "valueDensity": "CONCENTRATED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:H/U:Red", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "RED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "LOW", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "HIGH", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2024-11-18T16:15:11.683", "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-0012", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "https://unit42.paloaltonetworks.com/cve-2024-0012-cve-2024-9474/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://labs.watchtowr.com/pots-and-pans-aka-an-sslvpn-palo-alto-pan-os-cve-2024-0012-and-cve-2024-9474/", "tags": ["Exploit", "Third Party Advisory"], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}, {"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-0012", "tags": ["US Government Resource"], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-306"}]}, {"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit other authenticated privilege escalation vulnerabilities like CVE-2024-9474 https://security.paloaltonetworks.com/CVE-2024-9474 .\n\nThe risk of this issue is greatly reduced if you secure access to the management web interface by restricting access to only trusted internal IP addresses according to our recommended\u00a0 best practice deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 .\n\nThis issue is applicable only to PAN-OS 10.2, PAN-OS 11.0, PAN-OS 11.1, and PAN-OS 11.2 software.\n\nCloud NGFW and Prisma Access are not impacted by this vulnerability."}, {"lang": "es", "value": "Una omisi\u00f3n de autenticaci\u00f3n en el software PAN-OS de Palo Alto Networks permite que un atacante no autenticado con acceso a la red a la interfaz web de administraci\u00f3n obtenga privilegios de administrador de PAN-OS para realizar acciones administrativas, alterar la configuraci\u00f3n o explotar otras vulnerabilidades de escalada de privilegios autenticados como CVE-2024-9474 https://security.paloaltonetworks.com/CVE-2024-9474 . El riesgo de este problema se reduce en gran medida si protege el acceso a la interfaz web de administraci\u00f3n restringiendo el acceso solo a direcciones IP internas confiables de acuerdo con nuestras pautas de implementaci\u00f3n recomendadas https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . Este problema solo se aplica al software PAN-OS 10.2, PAN-OS 11.0, PAN-OS 11.1 y PAN-OS 11.2. Cloud NGFW y Prisma Access no se ven afectados por esta vulnerabilidad."}], "lastModified": "2025-11-04T16:49:23.110", "cisaActionDue": "2024-12-09", "cisaExploitAdd": "2024-11-18", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F54B40AC-A555-4447-B147-576D17CAB12A"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BEC5E9D4-1B58-4C89-8B68-47F996C04234"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DDDEB31F-EFDD-4A66-9687-7FFCF8EFDAAF"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C664207-FA80-467E-853B-CBF61F01115F"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F30A71D-281E-4BF8-803F-05B517399C6A"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CB7F608-4F03-46EF-A27E-4C8F5363FF5E"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2269819F-11BD-482C-B8D2-96A9C7AD54D4"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33340036-0E81-41CD-AFC4-480F509F8DD2"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D7986DC-187D-4798-8B4A-7D23DF0EE0C8"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D1FAC78-7714-48EC-9FDB-1A565814B958"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B86668F-7BC5-4F50-AE80-E99F6DE370D7"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:h5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E4172BC-EA53-4E01-B14D-BA897EBA2EAE"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98F219AD-A22F-47AC-88FE-B3F75AE059AC"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A79C13FD-C909-4FEE-AE24-A085E953D887"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7FCFB45-1150-4F9C-8E4B-3DB2ADE89454"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D4B4DCE-1593-4F8A-A461-A41290FE0041"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50F0801B-FC9F-4018-A837-CAB8CB9C9CD4"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8C4AC1F-4FF0-4500-AFBB-F29613358156"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:h9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FE16CA7-422A-4A53-8DDC-CB3A982C154F"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "135588B5-6771-46A3-98B0-39B4873FD6FD"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6ADF2A5B-DC55-44B1-A033-4A29C32AB5B1"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h16:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A17FE6D6-E0C3-4E82-A721-75C4E8001984"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "20673F1E-733D-41C4-A644-C482431C26EC"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "156DA55E-4152-47BF-A067-136EEC9ADE22"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2D2F5C4-7ACC-4514-ADBD-3948158B93CC"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEE36B5C-262E-42B0-B3C1-5EAA003E84B7"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "619AD3DA-9384-4CC5-9F3D-66DB5A055BCB"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1360C403-BCD8-420E-B907-4127E12B3A3A"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:h6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22206C8D-A8E8-4947-A277-F3256FD5D8ED"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3AF86BD-C317-45C7-96B6-34BD82579FDB"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09F61A78-1B7C-41F1-A0D8-0AB1E7ADF68C"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B7C37B3-EDA9-45D9-94A2-E7B24BA6C887"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8C42D98-CF8F-456B-9D57-80BBDC2C8E74"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3AAD4BA-22DD-43D3-91F1-8A6F5FBBF029"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA4994CB-6591-4B44-A5D7-3CDF540B97DE"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6AB7874-FE24-42AC-8E3A-822A70722126"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "776E06EC-2FDA-4664-AB43-9F6BE9B897CA"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBE09375-A863-42FF-813F-C20679D7C45C"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1311961A-0EF6-488E-B0C2-EDBD508587C9"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D64390F-F870-4DBF-B0FE-BCDFE58C8685"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F70FC9DF-10C9-4AE5-B64B-3153E2E4E9E8"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C3D6D552-6F33-496A-A505-5F59DF3B487B"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBA2B4FA-16C2-41B9-856D-EDC0CAF7A164"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5E6A893-2994-40A3-AF35-8AF068B0DE42"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D814F3A3-5E9D-426D-A654-1346D9ECE9B3"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C7E9211-7041-4720-B4B9-3EA95D425263"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CEB258EE-2C6E-4A63-B04C-89C5F76B0878"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F481B0E-2353-4AB0-8A98-B0EFBC409868"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:h9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E9EB9C6-78BA-4C66-A4BD-856BF27388CE"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03C5ABF2-8C53-4376-8A64-6CB34E18E77C"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "872BC747-512A-4872-AC86-E7F1DC589F47"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67F527D0-F85B-4B83-AEA5-BA636FC89210"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6CF8F985-7E51-49E6-857A-FAAF027F5611"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B437DCEA-ABA3-41CA-B320-97EC430F1122"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "593AFE7A-CB37-4156-A2B8-646A317F3176"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B3D7DBA-C90C-451D-94C3-8B7066826308"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "010F170D-438E-4A57-98B9-E7522FD95FC3"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD8795BE-5CC2-443D-99AD-BD6985CADBA7"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F3D096D4-E60E-4D4C-9122-C36B775B4A6F"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FEE28628-E969-44FC-B577-066DB98BBDA0"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D33A0FB-7538-42BF-84E8-7CCD7EEF9355"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB95D77F-1263-4D47-A0BB-94A6DA937115"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8BB72E15-486F-491F-A08D-E1AC2C8AB121"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5E7EFD5-2179-45BF-BF5B-197B66903D9C"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3EF4AE4F-36F3-4923-AE1E-DE9E036D4E2F"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.0:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10587864-8777-40F9-B162-BFBFAB8F5E06"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10A69DAE-5AD5-4E1C-9DF0-C7B7BB023B66"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFAA23E0-232D-42AA-A5A9-87063348D0DF"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50EA3EAC-91BD-4B30-A885-BED95B48CC3F"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.1:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD0CC02E-6079-4094-A355-E3300D7D4DD1"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C25AD9EA-7DDC-4704-9D7C-A1D6C1F5F696"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2416C2EF-1085-493D-84D7-18F7577D4A01"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E1D99D8-300C-4985-835C-3EBA2BFC098B"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B689FAD-0469-4222-A7EF-3268CCDA43A7"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.2:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CB3F7D3E-1479-435B-9249-F8F963440D0A"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D27A5944-FCD8-44AB-9986-0FCA24E81F5B"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B4425F47-446D-49C1-AAC9-5F5B7E5422A6"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC74ECE3-4F2C-450C-A781-16B1E53AF960"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22F4FF25-B12D-4FE2-83FC-B0DEE75FEE1D"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0ED8E63-B8F0-482A-A8A9-13C21D60EEB9"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.3:h5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9110DBFB-07D6-4D64-A8AA-C0E7A7037A87"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "723956E9-11FD-42A0-8A35-C1FDE9E1877C"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5601B7E0-68C9-4226-AA3D-D20012F6394B"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C953C2D-771C-40FC-AA09-1DFB0272AF47"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.4:h5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B4139E6-7623-4227-98AF-383ADE9D9A0B"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.5:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6AF1333-12CF-4826-8ED3-0791495E61C4"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.5:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E5FD0C6-81DB-4FFE-BDFC-A7DE0EE068FF"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.0.6:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B6C3AFF-3649-484C-A2FB-B71EE02FF176"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82FBA0C5-1385-42DD-A85D-DA1D818D0EF3"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FAC22EB-FB4C-4E9D-99A1-D4902262ED06"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3D65F1C-B055-408E-B7F2-512F13BEDCA6"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1B284FD-575E-46EA-95D8-D9E5FBBA8229"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DC41D6E-8632-44BB-BC05-7C22A02306A2"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF099226-A77E-4FDC-A044-8CA46D015C2C"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F7627B3-A463-4570-BA23-663FEB7B4A8B"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "275872C1-1EBB-4447-8C9F-347F757BFF42"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F83E2987-F7B0-486C-8DC3-3C4A8B76F295"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F6ACDFF-947E-4175-8A2A-8B43B86AA8B0"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F36A8CA-4B15-4A88-BA51-2346506DE6E5"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6CED1CC-D63C-4A10-9035-C461CA35E584"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:h9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC83C63B-54C8-4667-8742-30A5477414B5"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D828F283-5CE8-49BA-BFEF-92471C2ADEAE"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86053616-71FB-4F6E-8B1E-97C2DA6C08A8"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D1E3767-9517-4181-8355-DC0FB1139C95"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A3435A9-2100-4EB3-B20C-6A194A742BCD"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "502BF06E-5B51-41F7-9A88-26051675FE0C"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:h6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D953B45F-7F10-4087-AE3A-BD9AB977AF8B"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF83EAA1-49E1-4AD0-A049-F1B3065950BC"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BE3F7369-9F35-409A-9F47-45A959592DFA"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9DB4DA9-2262-4E9E-B3A1-49D261D01295"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B2C0E11-A6CE-419D-86A0-3930DE25B544"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CDFD8B17-5871-4897-B9F1-1A01C6D040A9"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8AFDFCC-F635-4493-8E98-A87AAAABCB27"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B346381-C972-46AE-97D5-425FC27658BE"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:h1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F3A4E32-1A9A-4DD2-A71C-44D8F20A3C08"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "004BE44F-2BA5-411D-96ED-3D92C13160AE"}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C01AD190-F3C2-4349-A063-8C5C78B725B9"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]", "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. Additionally, management interface for affected devices should not be exposed to untrusted networks, including the internet.", "cisaVulnerabilityName": "Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability"}