FeedlyFeedly
CVEsCVEs
Threat IntelligenceThreat Intelligence
Threat IntelligenceThreat Intelligence
Log in
ChangelogChangelog
ChangelogChangelog
Log in
Log in
Start Free Trial
Start Free Trial
FeedlyFeedly
CVEsCVEs
Threat IntelligenceThreat Intelligence
Threat IntelligenceThreat Intelligence
Log in
ChangelogChangelog
ChangelogChangelog
Log in
Log in
Start Free Trial
Start Free Trial

CVE-2024-5919

Improper Restriction of XML External Entity Reference (CWE-611)

Published: Nov 14, 2024 / Updated: 5d ago

010
CVSS 5.1EPSS 0.04%Medium
CVE info copied to clipboard

A blind XML External Entities (XXE) injection vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker to exfiltrate arbitrary files from firewalls to an attacker controlled server. This attack requires network access to the firewall management interface.

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:A/V:C/RE:M/U:Amber

Timeline

CVE Assignment

NVD published the first details for CVE-2024-5919

Nov 14, 2024 at 10:15 AM
CVSS

A CVSS base score of 5.1 has been assigned.

Nov 14, 2024 at 10:20 AM / nvd
First Article

Feedly found the first article mentioning CVE-2024-5919. See article

Nov 14, 2024 at 10:24 AM / National Vulnerability Database
CVSS Estimate

Feedly estimated the CVSS score as HIGH

Nov 14, 2024 at 10:24 AM
Detection in Vulnerability Scanners

Detection for the vulnerability has been added to Qualys (731900)

Nov 15, 2024 at 7:53 AM
EPSS

EPSS Score was set to: 0.04% (Percentile: 10.2%)

Nov 15, 2024 at 10:16 AM
Static CVE Timeline Graph

Affected Systems

Paloaltonetworks/pan-os
+null more

Attack Patterns

CAPEC-221: Data Serialization External Entities Blowup
+null more

News

Authenticated XXE in Palo Alto Networks PAN-OS
Security feed from CyberSecurity Help / 1d
Successful exploitation of the vulnerability may allow an attacker to view contents of arbitrary file on the server or perform network scanning of internal and external infrastructure. A remote privileged user can pass a specially crafted XML code to the affected application and view contents of arbitrary files on the system or initiate requests to external systems.
[no-title]
Palo Alto Networks Security Advisories / 1d
Prisma Cloud Compute Cortex XDR Agent 8.6
Palo Alto PAN-OS Multiple vulnerabilities
HKCERT Infosec Express -- Alert and Blog Channel / 5d
A remote user could exploit these vulnerabilities to trigger cross-site scripting, remote code execution, denial of service, sensitive information disclosure, and security restriction bypass on the targeted system. Cross-Site Scripting
Multiple Vulnerabilities in Palo Alto Networks (PAN-OS)
In Progress Plugin Pipeline from Tenable / 5d
Development Last Updated: 11/14/2024 CVEs: CVE-2024-2552 , CVE-2024-5920 , CVE-2024-9472 , CVE-2024-5917 , CVE-2024-5919 , CVE-2024-2551 , CVE-2024-5918 , CVE-2024-2550
NA - CVE-2024-5919 - A blind XML External Entities (XXE) injection...
Security-Database Alerts Monitor : Last 100 Alerts / 5d
A blind XML External Entities (XXE) injection vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker to exfiltrate arbitrary files from firewalls to an attacker...
See 11 more articles and social media posts

CVSS V3.1

Unknown

Categories

CWE-611(1062)

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI

Feedly Threat Intelligence30-day free trial