CISA Warns of Critical Vulnerability in Palo Alto Networks Expedition Tool
BleepingComputer
|
Contributed by: Drex DeFord
Summary
CISA has issued a warning about a critical vulnerability, CVE-2024-5910, in Palo Alto Networks Expedition, a tool for migrating firewall configurations. This flaw allows attackers to remotely reset admin credentials on internet-exposed servers, potentially granting unauthorized access to sensitive information. Although a patch was released in July, ongoing exploits have been reported, with a vulnerability researcher demonstrating a proof-of-concept that combines this issue with another vulnerability, leading to unauthorized command execution. CISA advises administrators to limit network access to authorized users and to rotate credentials after applying the patch, highlighting the urgency due to a lack of updated security advisories from Palo Alto Networks.
