CVE-2024-3400

Related Files

Palo Alto Networks PAN-OS Unauthenticated Remote Code Execution

Posted Apr 23, 2024

Authored by sfewer-r7, remmons-r7 | Site metasploit.com

This Metasploit module exploits two vulnerabilities in Palo Alto Networks PAN-OS that allow an unauthenticated attacker to create arbitrarily named files and execute shell commands. Configuration requirements are PAN-OS with GlobalProtect Gateway or GlobalProtect Portal enabled and telemetry collection on (default). Multiple versions are affected. Payloads may take up to one hour to execute, depending on how often the telemetry service is set to run.

tags | exploit, shell, vulnerability

advisories | CVE-2024-3400

SHA-256 | 9c69f9786e45a27c7e5254838feb1083b7180cc983336792158dcfa2db1cdf80

Download | Favorite | View

Palo Alto PAN-OS Command Execution / Arbitrary File Creation

Posted Apr 23, 2024

Authored by Kr0ff

Palo Alto PAN-OS versions prior to 11.1.2-h3 command injection and arbitrary file creation exploit.

tags | exploit, arbitrary

advisories | CVE-2024-3400

SHA-256 | 594b68c209a4adfbc7ba9577a8a4aeb75c0f92fd1d23ee6c6e97dbda9ba864a9

Download | Favorite | View

Palo Alto OS Command Injection

Posted Apr 17, 2024

Authored by h4x0r-dz | Site github.com

Palo Alto OS was recently hit by a command injection zero day attack. These are exploitation details related to the zero day.

tags | exploit

advisories | CVE-2024-3400

SHA-256 | d03a8781f559271cf9b0357b2f4175728dea72a07e8c80018aea6ad57dd5005c

Download | Favorite | View

Palo Alto OS Command Injection Proof Of Concept

Posted Apr 17, 2024

Authored by W01fh4cker | Site github.com

This is a scanning script to validate vulnerable Palo Alto OS systems for the recent zero day command injection vulnerability.

tags | exploit

advisories | CVE-2024-3400

SHA-256 | 598a7a82abf19bafc0d92036ceedf6035be85e2bd71ac504bb9370863336dd2b

Download | Favorite | View