Vulnerability Description
A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote attacker to reboot hardware-based firewalls. Repeated attacks eventually cause the firewall to enter maintenance mode, which requires manual intervention to bring the firewall back online. This affects the following hardware firewall models: - PA-5400 Series firewalls - PA-7000 Series firewalls
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Paloaltonetworks | Pan-Os | >= 9.0.0, <= 9.0.16 |
| Paloaltonetworks | Pa-5410 | - |
| Paloaltonetworks | Pa-5420 | - |
| Paloaltonetworks | Pa-5430 | - |
| Paloaltonetworks | Pa-5440 | - |
| Paloaltonetworks | Pa-5445 | - |
| Paloaltonetworks | Pa-7050 | - |
| Paloaltonetworks | Pa-7080 | - |
Related Weaknesses (CWE)
References
- https://security.paloaltonetworks.com/CVE-2024-3385Vendor Advisory
- https://security.paloaltonetworks.com/CVE-2024-3385Vendor Advisory
FAQ
What is CVE-2024-3385?
CVE-2024-3385 is a vulnerability with a CVSS score of 7.5 (HIGH). A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote attacker to reboot hardware-based firewalls. Repeated attacks eventually cause the firewall to enter maintenance mo...
How severe is CVE-2024-3385?
CVE-2024-3385 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-3385?
Check the references section above for vendor advisories and patch information. Affected products include: Paloaltonetworks Pan-Os, Paloaltonetworks Pa-5410, Paloaltonetworks Pa-5420, Paloaltonetworks Pa-5430, Paloaltonetworks Pa-5440.