Executive Risk Summary
"A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administrator with access to the management web interface to perform actions on the firewall with root privileges. This vulnerability can be exploited by an attacker with access to the management web interface, potentially leading to unauthorized access and control of the firewall."
Operational Audit Arsenal
Target Type Firmware Image
Target Asset PAN-OS
Standard Path Global Firmware
Manual Verification Required
This is a non-Windows asset (Palo Alto Networks). Use the target asset details and official path provided above to verify your current version against the official vendor advisories listed below.
Patch Impact Forecast
Reboot Required Likely
Potential disruption to firewall services during reboot
Internal Work Notes
PAN-OS privilege escalation vulnerability (CVE-2024-9474) - verify version and apply patch to prevent unauthorized access
Technical Intelligence & Operational Utilities • Delivered Weekly
Intelligence Sources
Official Advisoryhttps://security.paloaltonetworks.com/CVE-2024-9474
Official Advisoryhttps://unit42.paloaltonetworks.com/cve-2024-0012-cve-2024-9474/
Official Advisoryhttps://github.com/k4nfr3/CVE-2024-9474
Official Advisoryhttps://labs.watchtowr.com/pots-and-pans-aka-an-sslvpn-palo-alto-pan-os-cve-2024-0012-and-cve-2024-9474/
Official Advisoryhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-9474
Related Palo Alto Networks Threats
Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.