Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/CyberLeech/statuses/112292574487851536">MemoryLeech (cyberleech@cyberplace.social)'s status on Thursday, 18-Apr-2024 22:59:10 JST</a><a href="https://cyberplace.social/@CyberLeech" title="cyberleech@cyberplace.social"><img src="https://gnusocial.jp/avatar/167909-48-20240116210007.webp" width="48" height="48" alt="MemoryLeech" style="position: absolute; left: 0; top: 0;">MemoryLeech</a><div><a href="https://cyberplace.social/@GossiTheDog/112257455436025603" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://cyberplace.social/@GossiTheDog">@GossiTheDog</a> </p><p>Fun times ahead:</p><p>"This pull request is an exploit module for <a href="https://security.paloaltonetworks.com/CVE-2024-3400" rel="nofollow noreferrer">https://security.paloaltonetworks.com/CVE-2024-3400</a>, affecting PAN-OS GlobalProtect Gateway and GlobalProtect Portal deployments with the default telemetry service enabled."</p><p><a href="https://github.com/rapid7/metasploit-framework/pull/19101" rel="nofollow noreferrer">https://github.com/rapid7/metasploit-framework/pull/19101</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2928401#notice-5880176">In conversation</a><time datetime="2024-04-18T22:59:10+09:00" title="Thursday, 18-Apr-2024 22:59:10 JST">about 7 months ago</time> <span>from <span><a href="https://cyberplace.social/@CyberLeech/112292574487851536" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@CyberLeech/112292574487851536">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: security.paloaltonetworks.com</div><h5><a href="https://security.paloaltonetworks.com/CVE-2024-3400">CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect</a></h5><div> from <span>PAN PSIRT</span></div></header><div>A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated atta...</div><footer></footer></article></li><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://github.com/rapid7/metasploit-framework/pull/19101">Exploit module for CVE-2024-4300 - Palo Alto Networks PAN-OS by remmons-r7 · Pull Request #19101 · rapid7/metasploit-framework</a></h5><div></div></header><div>This pull request is an exploit module for https://security.paloaltonetworks.com/CVE-2024-3400, affecting PAN-OS GlobalProtect Gateway and GlobalProtect Portal deployments with the default telemetr...</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
MemoryLeech (cyberleech@cyberplace.social)'s status on Thursday, 18-Apr-2024 22:59:10 JSTMemoryLeech
in reply to
- Kevin Beaumont
@GossiTheDog
Fun times ahead:
"This pull request is an exploit module for https://security.paloaltonetworks.com/CVE-2024-3400, affecting PAN-OS GlobalProtect Gateway and GlobalProtect Portal deployments with the default telemetry service enabled."
https://github.com/rapid7/metasploit-framework/pull/19101
In conversationabout 7 months ago from cyberplace.socialpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: security.paloaltonetworks.com
  CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect
  from PAN PSIRT
  A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated atta...
2. No result found on File_thumbnail lookup.
  Exploit module for CVE-2024-4300 - Palo Alto Networks PAN-OS by remmons-r7 · Pull Request #19101 · rapid7/metasploit-framework
  This pull request is an exploit module for https://security.paloaltonetworks.com/CVE-2024-3400, affecting PAN-OS GlobalProtect Gateway and GlobalProtect Portal deployments with the default telemetr...

Public

Embed Notice

HTML Code

Corresponding Notice