PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect 漏洞信息(CVE-2024-3400)

漏洞详情： CVE-2024-3400

漏洞标题

PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect

来源：NVD

Palo Alto Networks PAN-OS 命令注入漏洞

来源：CNNVD

PAN-OS：任意文件创建导致GlobalProtect中的操作系统命令注入漏洞

来源：神龙机器人

漏洞描述

A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.

来源：NVD

Palo Alto Networks PAN-OS是美国Palo Alto Networks公司的一款下一代防火墙软件。 Palo Alto Networks PAN-OS 10.2、11.0、11.1存在命令注入漏洞，该漏洞源于GlobalProtect 功能中存在命令注入漏洞，可能使未经身份验证的攻击者在防火墙上以 root权限执行任意代码。

来源：CNNVD

由于Palo Alto Networks PAN-OS软件中特定PAN-OS版本和独特功能配置的GlobalProtect功能存在任意文件创建漏洞，可能会导致命令注入，从而使未经身份验证的攻击者能够在防火墙上以root权限执行任意代码。云NGFW、Panorama设备和Prisma Access不受此漏洞影响。

来源：神龙机器人

漏洞评分(CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

来源：NVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

来源：神龙机器人, 准确率：7/8 = 87.50%

漏洞类别

在命令中使用的特殊元素转义处理不恰当(命令注入)

来源：NVD

命令注入

来源：CNNVD

情报信息

0x1 POC 情报

This script is designed to demonstrate the exploitation of vulnerabilities in PAN-OS firewalls. It sends a specially crafted payload to the firewall's API endpoint to execute arbitrary commands.

详情: https://github.com/DrewskyDev/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x2 POC 情报

CVE-2024-3400 POC Remote Code Execution (RCE) Palo Alto Networks PAN-OS software

详情: https://github.com/bigsclowns/CVE-2024-3400-POC

None

来源：POC-IN-GITHUB

0x3 POC 情报

None

详情: https://github.com/Yuvvi01/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x4 POC 情报

CVE-2024-3400 Checker

详情: https://github.com/shamo0/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x5 POC 情报

None

详情: https://github.com/CerTusHack/CVE-2024-3400-PoC

None

来源：POC-IN-GITHUB

0x6 POC 情报

None

详情: https://github.com/0x0d3ad/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x7 POC 情报

None

详情: https://github.com/FoxyProxys/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x8 POC 情报

None

详情: https://github.com/momika233/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x9 POC 情报

CVE-2024-3400 POC Remote Code Execution (RCE) Palo Alto Networks PAN-OS software

详情: https://github.com/kerberoshacker/CVE-2024-3400-POC

None

来源：POC-IN-GITHUB

0x10 POC 情报

Vulnerabilidad de palo alto

详情: https://github.com/MrR0b0t19/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x11 POC 情报

A simple bash script to check for evidence of compromise related to CVE-2024-3400

详情: https://github.com/MurrayR0123/CVE-2024-3400-Compromise-Checker

None

来源：POC-IN-GITHUB

0x12 POC 情报

CVE-2024-3400 POC Remote Code Execution (RCE) Palo Alto Networks PAN-OS software

详情: https://github.com/kerberoshacker2/CVE-2024-3400-POC

None

来源：POC-IN-GITHUB

0x13 POC 情报

CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect

详情: https://github.com/AdaniKamal/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x14 POC 情报

None

详情: https://github.com/LoanVitor/CVE-2024-3400-

None

来源：POC-IN-GITHUB

0x15 POC 情报

CVE-2024-3400 Palo Alto OS Command Injection

详情: https://github.com/h4x0r-dz/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x16 POC 情报

CVE-2024-3400

详情: https://github.com/W01fh4cker/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x17 POC 情报

None

详情: https://github.com/CONDITIONBLACK/CVE-2024-3400-POC

None

来源：POC-IN-GITHUB

0x18 POC 情报

None

详情: https://github.com/Chocapikk/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x19 POC 情报

CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect

详情: https://github.com/ihebski/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x20 POC 情报

CVE-2024-3400-RCE

详情: https://github.com/W01fh4cker/CVE-2024-3400-RCE

None

来源：POC-IN-GITHUB

0x21 POC 情报

A check program for CVE-2024-3400, Palo Alto PAN-OS unauthenticated command injection vulnerability. Palo Alto 防火墙 PAN-OS 远程命令注入检测程序。

详情: https://github.com/index2014/CVE-2024-3400-Checker

None

来源：POC-IN-GITHUB

0x22 POC 情报

CVE-2024-3400-RCE

详情: https://github.com/admi-n/CVE-2024-3400-RCE-copy

None

来源：POC-IN-GITHUB

0x23 POC 情报

Have we not learnt from HoneyPoC?

详情: https://github.com/ZephrFish/CVE-2024-3400-Canary

None

来源：POC-IN-GITHUB

0x24 POC 情报

Global Protec Palo Alto File Write Exploit

详情: https://github.com/ak1t4/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x25 POC 情报

Simple POC for CVE-2024-3400

详情: https://github.com/phantomradar/cve-2024-3400-poc

None

来源：POC-IN-GITHUB

0x26 POC 情报

CVE-2024-3400 : Palo Alto OS Command Injection - POC

详情: https://github.com/retkoussa/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x27 POC 情报

None

详情: https://github.com/schooldropout1337/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x28 POC 情报

EDL for IPs attacking customers with CVE-2024-3400

详情: https://github.com/hahasagined/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x29 POC 情报

Simple Python code to check for arbitrary uploading

详情: https://github.com/codeblueprint/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x30 POC 情报

Python script to check Palo Alto firewalls for CVE-2024-3400 exploit attempts

详情: https://github.com/swaybs/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x31 POC 情报

None

详情: https://github.com/sxyrxyy/CVE-2024-3400-Check

None

来源：POC-IN-GITHUB

0x32 POC 情报

CVE-2024-3400 POC written in Rust and Python

详情: https://github.com/Ravaan21/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x33 POC 情报

Finding Palo Alto devices vulnerable to CVE-2024-3400.

详情: https://github.com/pwnj0hn/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x34 POC 情报

CVE-2024-3400-RCE

详情: https://github.com/W01fh4cker/CVE-2024-3400-RCE-Scan

None

来源：POC-IN-GITHUB

0x35 POC 情报

Extract useful information from PANOS support file for CVE-2024-3400

详情: https://github.com/HackingLZ/panrapidcheck

None

来源：POC-IN-GITHUB

0x36 POC 情报

Exploit for CVE-2024-3400

详情: https://github.com/stronglier/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x37 POC 情报

Python exploit and checker script for CVE-2024-3400 Palo Alto Command Injection and Arbitrary File Creation

详情: https://github.com/Kr0ff/cve-2024-3400

None

来源：POC-IN-GITHUB

0x38 POC 情报

Simple honeypot for CVE-2024-3400 Palo Alto PAN-OS Command Injection Vulnerability

详情: https://github.com/zam89/CVE-2024-3400-pot

None

来源：POC-IN-GITHUB

0x39 POC 情报

Check to see if your Palo Alto firewall has been compromised by running script againt support bundle.

详情: https://github.com/terminalJunki3/CVE-2024-3400-Checker

None

来源：POC-IN-GITHUB

0x40 POC 情报

None

详情: https://github.com/0xr2r/CVE-2024-3400-Palo-Alto-OS-Command-Injection

None

来源：POC-IN-GITHUB

0x41 POC 情报

Exploit for GlobalProtect CVE-2024-3400

详情: https://github.com/marconesler/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x42 POC 情报

None

详情: https://github.com/andrelia-hacks/CVE-2024-3400

None

来源：POC-IN-GITHUB

0x43 POC 情报

Find rows contain specific IP addresses in large files and then, extract them. This tool make for investigating logs for cve-2024-3400

详情: https://github.com/tk-sawada/IPLineFinder

None

来源：POC-IN-GITHUB

0x44 POC 情报

None

详情: https://github.com/iwallarm/cve-2024-3400

None

来源：POC-IN-GITHUB

漏洞详情： CVE-2024-3400

漏洞标题

漏洞描述

漏洞评分(CVSS)

漏洞类别

情报信息

相关链接