Read more: socradar.io
Palo Alto Networks has released patches for critical vulnerabilities found in its Expedition tool, which is used for migrating configurations from different vendors to Palo Alto Networks’ PAN-OS. These vulnerabilities could allow attackers to execute commands, access sensitive data, and potentially compromise firewall administrator accounts. The vulnerabilities include OS command injection, SQL injection, cleartext storage of sensitive data, and Cross-site Scripting (XSS). The most critical vulnerability, CVE-2024-9463, could allow attackers to execute OS commands as root and access sensitive data like usernames, cleartext passwords, and API keys. Organizations using Palo Alto Networks’ Expedition tool are urged to update to version 1.2.96 or later immediately to mitigate these risks. This includes implementing access control measures, regularly monitoring for suspicious activity, and ensuring strong security practices.