CVE-2024-9474

CVE Database · CVE-2024-9474

CVE-2024-9474

· HIGHAnalyzed

CVSS v3.1

7.2

CVSS v4.0

6.9

EPSS

94.77%

Published

Nov 18, 2024

Modified

Nov 4, 2025

CISA Known Exploited Vulnerability

Added: 2024-11-18 · Due: 2024-12-09

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. Additionally, the management interfaces for affected devices should not be exposed to untrusted networks, including the internet.

Public PoC / Exploit (7)

All weaponized →

NucleiNuclei detection template TrickestTrickest PoC index GitHub PoCChocapikk/CVE-2024-9474★45 GitHub PoCk4nfr3/CVE-2024-9474★9 GitHub PoCcoskper-papa/PAN-OS_CVE-2024-9474★2

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administrator with access to the management web interface to perform actions on the firewall with root privileges. Cloud NGFW and Prisma Access are not impacted by this vulnerability.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-78CWE-78

Affected Products (13)

paloaltonetworks · pan-os (up to 10.1.14)vulnerable

paloaltonetworks · pan-os (up to 10.2.12)vulnerable

paloaltonetworks · pan-os (up to 11.0.6)vulnerable

paloaltonetworks · pan-os (up to 11.1.5)vulnerable

paloaltonetworks · pan-os (up to 11.2.4)vulnerable

paloaltonetworks · pan-osvulnerable

paloaltonetworks · pan-os