CVE-2024-3388

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-3388
A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enables an authenticated attacker to impersonate another user and send network packets to internal assets. However, this vulnerability does not allow the attacker to receive response packets from those internal assets.

4.1 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.3 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

References
Link Resource
https://security.paloaltonetworks.com/CVE-2024-3388 Vendor Advisory
https://security.paloaltonetworks.com/CVE-2024-3388 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:-:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:h1:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:-:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h1:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h3:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:paloaltonetworks:prisma_access:-:*:*:*:*:*:*:*
History

24 Jan 2025, 16:16

Type Values Removed Values Added
References () https://security.paloaltonetworks.com/CVE-2024-3388 - () https://security.paloaltonetworks.com/CVE-2024-3388 - Vendor Advisory
CPE cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:-:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:h1:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h3:*:*:*:*:*:*
cpe:2.3:a:paloaltonetworks:prisma_access:-:*:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:h1:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:10.1.11:-:*:*:*:*:*:*
cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*
First Time Paloaltonetworks pan-os
Paloaltonetworks
Paloaltonetworks prisma Access

21 Nov 2024, 09:29

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad en GlobalProtect Gateway del software PAN-OS de Palo Alto Networks permite que un atacante autenticado se haga pasar por otro usuario y envíe paquetes de red a recursos internos. Sin embargo, esta vulnerabilidad no permite que el atacante reciba paquetes de respuesta de esos recursos internos.
References () https://security.paloaltonetworks.com/CVE-2024-3388 - () https://security.paloaltonetworks.com/CVE-2024-3388 -

10 Apr 2024, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-04-10 17:15

Updated : 2025-01-24 16:16

NVD link : CVE-2024-3388

Mitre link : CVE-2024-3388

CVE.ORG link : CVE-2024-3388

JSON object : View

Products Affected

paloaltonetworks

  • pan-os
  • prisma_access
CWE
CWE-269

Improper Privilege Management

CWE-863

Incorrect Authorization