Published: Sat 11 Jan 2025
An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclosure of usernames, cleartext passwords, device configurations, and device API keys for firewalls running PAN-OS software.
Note: This product uses data from the NVD API but is not endorsed or certified by the NVD.
Stay informed with product updates and security tips delivered to your inbox; no spam.