CVE-2024-3382

Published: Apr 10, 2024Modified: Jan 22, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a burst of crafted packets through the firewall that eventually prevents the firewall from processing traffic. This issue applies only to PA-5400 Series devices that are running PAN-OS software with the SSL Forward Proxy feature enabled.

Affected (5)

Products: Paloaltonetworks: Pan Os

Paloaltonetworks

1 product

Pan Os

Configuration A

5 vulnerable · 5 platform

Vulnerable Software	Affected Versions
Paloaltonetworks Pan Os	From 10.2.0 to 10.2.7
Paloaltonetworks Pan Os	From 11.0.0 to 11.0.4
Paloaltonetworks Pan Os	From 11.1.0 to 11.1.2
Paloaltonetworks Pan Os	Version 10.2.7
Paloaltonetworks Pan Os	Version 10.2.7 h1

Running on/with	Platform Versions
Paloaltonetworks Pa 5410	All versions
Paloaltonetworks Pa 5420	All versions
Paloaltonetworks Pa 5430	All versions
Paloaltonetworks Pa 5440	All versions
Paloaltonetworks Pa 5445	All versions

Related CWEs

CWE-401

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

CWE-770

Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (2)

https://security.paloaltonetworks.com/CVE-2024-3382

Source: psirt@paloaltonetworks.com

Vendor Advisory

https://security.paloaltonetworks.com/CVE-2024-3382

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.