Friday, January 17, 2025
HomeCVE/vulnerabilityCISA Warns of Actors Exploiting Two Palo Alto Networks Vulnerabilities

CISA Warns of Actors Exploiting Two Palo Alto Networks Vulnerabilities

Published on

SIEM as a Service

Follow Us on Google News

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert and added two new vulnerabilities related to Palo Alto Networks to its Known Exploited Vulnerabilities Catalog.

These vulnerabilities, CVE-2024-9463 and CVE-2024-9465, are reportedly actively exploited by malicious cyber actors. CISA emphasizes that both vulnerabilities pose significant risks, particularly to federal systems.

CVE-2024-9463: Palo Alto Networks Expedition OS Command Injection Vulnerability

The first vulnerability, CVE-2024-9463, is an OS Command Injection flaw in Palo Alto Networks’ Expedition tool, which could allow attackers to execute arbitrary code on the affected system.

This type of vulnerability is particularly dangerous because it grants threat actors the ability to take control of a system and launch further attacks, escalating their access across the network.

Free Ultimate Continuous Security Monitoring Guide - Download Here (PDF)

CVE-2024-9465: Palo Alto Networks Expedition SQL Injection Vulnerability

The second vulnerability, CVE-2024-9465, is an SQL Injection vulnerability in the same Expedition tool.

This flaw allows attackers to manipulate database queries, potentially stealing, modifying, or deleting sensitive data.

SQL Injection vulnerabilities are a common attack vector for cybercriminals, making this a critical issue for organizations using the impacted versions of Expedition.

Federal Civilian Executive Branch (FCEB) agencies are required to address these vulnerabilities by the established deadlines.

The Known Exploited Vulnerabilities Catalog, created through BOD 22-01, is a dynamic list that serves as a critical resource for organizations looking to mitigate cyber risks.

It includes vulnerabilities that are actively exploited and pose a significant threat to federal networks.

While BOD 22-01 directly applies to federal agencies, CISA strongly urges all organizations, both public and private, to prioritize the timely remediation of vulnerabilities listed in the catalog.

Organizations should incorporate these steps as part of their comprehensive vulnerability management strategies to reduce exposure to cyberattacks.

Analyze Unlimited Phishing & Malware with ANY.RUN For Free - 14 Days Free Trial.



Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

BitMEX Fined $100 Million for Violating Bank Secrecy Act

In a significant legal development, HDR Global Trading Ltd., operating under the name BitMEX,...

CISA Warns of Aviatrix Controllers OS Command Injection Vulnerability Exploited in Wild

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding a...

CISA Releases Guidelines For Closing Software Understanding Gap

The Cybersecurity and Infrastructure Security Agency (CISA) has released a pivotal report calling for...

Hackers Deploy Web Shell To Abuse IIS Worker And Exfiltrate Data

An attacker exploited a vulnerability in the batchupload.aspx and email_settings.aspx pages on the target...

API Security Webinar

Free Webinar - DevSecOps Hacks

By embedding security into your CI/CD workflows, you can shift left, streamline your DevSecOps processes, and release secure applications faster—all while saving time and resources.

In this webinar, join Phani Deepak Akella ( VP of Marketing ) and Karthik Krishnamoorthy (CTO), Indusface as they explores best practices for integrating application security into your CI/CD workflows using tools like Jenkins and Jira.

Discussion points

Automate security scans as part of the CI/CD pipeline.
Get real-time, actionable insights into vulnerabilities.
Prioritize and track fixes directly in Jira, enhancing collaboration.
Reduce risks and costs by addressing vulnerabilities pre-production.

More like this

BitMEX Fined $100 Million for Violating Bank Secrecy Act

In a significant legal development, HDR Global Trading Ltd., operating under the name BitMEX,...

CISA Warns of Aviatrix Controllers OS Command Injection Vulnerability Exploited in Wild

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding a...

CISA Releases Guidelines For Closing Software Understanding Gap

The Cybersecurity and Infrastructure Security Agency (CISA) has released a pivotal report calling for...