CVE-2024-3382

A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a burst of crafted packets through the firewall that eventually prevents the firewall from processing traffic. This issue applies only to PA-5400 Series devices that are running PAN-OS software with the SSL Forward Proxy feature enabled.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://security.paloaltonetworks.com/CVE-2024-3382	Vendor Advisory
https://security.paloaltonetworks.com/CVE-2024-3382	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1::::::

OR	cpe:2.3:h:paloaltonetworks:pa-5410:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5420:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5430:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5440:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5445:-:::::::*

History

22 Jan 2025, 15:44

Type	Values Removed	Values Added
CPE		cpe:2.3:h:paloaltonetworks:pa-5430:-:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:::::: cpe:2.3:h:paloaltonetworks:pa-5410:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5420:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5440:-:::::::* cpe:2.3:o:paloaltonetworks:pan-os:::::::: cpe:2.3:h:paloaltonetworks:pa-5445:-:::::::*
First Time		Paloaltonetworks pa-5410 Paloaltonetworks pa-5440 Paloaltonetworks pa-5430 Paloaltonetworks pa-5445 Paloaltonetworks pan-os Paloaltonetworks Paloaltonetworks pa-5420
References	~~() https://security.paloaltonetworks.com/CVE-2024-3382 -~~	() https://security.paloaltonetworks.com/CVE-2024-3382 - Vendor Advisory
CWE		CWE-401

21 Nov 2024, 09:29

Type	Values Removed	Values Added
Summary		(es) Existe una fuga de memoria en el software PAN-OS de Palo Alto Networks que permite a un atacante enviar una ráfaga de paquetes manipulados a través del firewall que, en última instancia, impide que el firewall procese el tráfico. Este problema se aplica únicamente a los dispositivos de la serie PA-5400 que ejecutan el software PAN-OS con la función SSL Forward Proxy habilitada.
References	~~() https://security.paloaltonetworks.com/CVE-2024-3382 -~~	() https://security.paloaltonetworks.com/CVE-2024-3382 -

10 Apr 2024, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-04-10 17:15

Updated : 2025-01-22 15:44

NVD link : CVE-2024-3382

Mitre link : CVE-2024-3382

CVE.ORG link : CVE-2024-3382

JSON object : View

Products Affected

paloaltonetworks

pa-5445
pan-os
pa-5420
pa-5410
pa-5430
pa-5440

CWE

CWE-770

Allocation of Resources Without Limits or Throttling

CWE-401

Missing Release of Memory after Effective Lifetime

7.5 /10