Hackers Give Palo Alto Firewalls a Reboot Rinse and Repeat!

Hackers are having a field day exploiting the CVE-2024-3393 denial of service vulnerability, turning Palo Alto Networks firewalls into reboot enthusiasts. The flaw, which requires manual intervention for repairs, has been patched in newer PAN-OS versions. However, devices running PAN-OS 11.0 are out of luck as it’s reached the end-of-life date.

3P
Published: December 27, 2024 4:42 pmAdded: December 27, 2024 at 9:10 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Who knew firewalls had a soft spot for malicious packets? It’s like an Achilles’ heel for the digital age, where the mighty firewall gets a reboot nudge from a sneaky hacker with a bad attitude. Thanks to this CVE-2024-3393 vulnerability, firewalls are having more meltdowns than a toddler denied dessert. Kudos to Palo Alto Networks for stepping in as the tech-savvy babysitter to calm the chaos!

Key Points:

  • Palo Alto Networks warns of a CVE-2024-3393 vulnerability causing firewall reboots.
  • The vulnerability is actively exploited by unauthenticated attackers using malicious packets.
  • Only affects devices with ‘DNS Security’ logging enabled.
  • Patches available for most PAN-OS versions, except PAN-OS 11.0 which is EOL.
  • Palo Alto provided workarounds for those unable to update immediately.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?