Wiz observes exploitation in the wild of PAN-OS vulnerabilities

Wiz Threat Research has confirmed active exploitation in the wild targeting critical vulnerabilities within Palo Alto Networks PAN-OS software. Specifically, CVE-2024-0012 and CVE-2024-9474 are being leveraged by unidentified threat actors to compromise network security perimeters. These vulnerabilities pose a severe risk to organizations utilizing affected PAN-OS versions, potentially allowing unauthorized access or control over firewall infrastructure. The immediate impact includes potential network breaches, data exfiltration, and lateral movement within compromised environments. Due to the active nature of these exploits, the severity is assessed as critical. Organizations are strongly urged to prioritize immediate patching of affected systems to mitigate risk. Delaying remediation increases the likelihood of successful intrusion. Continuous monitoring for suspicious activity related to these CVEs is also recommended alongside vulnerability management protocols to ensure comprehensive defense against ongoing exploitation attempts targeting network infrastructure.

Detect and mitigate CVE-2024-0012 and CVE-2024-9474, PAN-OS vulnerabilities which Wiz Threat Research has observed being exploited in-the-wild. Organizations should patch urgently.

Wiz Threat Research has confirmed active exploitation in the wild targeting critical vulnerabilities within Palo Alto Networks PAN-OS software. Specifically, CVE-2024-0012 and CVE-2024-9474 are being leveraged by unidentified threat actors to compromise network security perimeters. These vulnerabilities pose a severe risk to organizations utilizing affected PAN-OS versions, potentially allowing unauthorized access or control over firewall infrastructure. The immediate impact includes potential network breaches, data exfiltration, and lateral movement within compromised environments. Due to the active nature of these exploits, the severity is assessed as critical. Organizations are strongly urged to prioritize immediate patching of affected systems to mitigate risk. Delaying remediation increases the likelihood of successful intrusion. Continuous monitoring for suspicious activity related to these CVEs is also recommended alongside vulnerability management protocols to ensure comprehensive defense against ongoing exploitation attempts targeting network infrastructure. Detect and mitigate CVE-2024-0012 and CVE-2024-9474, PAN-OS vulnerabilities which Wiz Threat Research has observed being exploited in-the-wild. Organizations should patch urgently. Detect and mitigate CVE-2024-0012 and CVE-2024-9474, PAN-OS vulnerabilities which Wiz Threat Research has observed being exploited in-the-wild. Organizations should patch urgently.