Recently, two critical vulnerabilities (CVE-2024-0012 and CVE-2024-9474) were discovered in Palo Alto Networks' PanOS operating system. CVE-2024-0012 lets an attacker gain admin access and exploit other vulnerabilities like 2024-9474. These vulnerabilities allow attackers to gain admin privileges and plant malicious code, potentially giving them deeper access to company networks. The highlights are available below. Watch the video for the full story.

Here’s how you can address these threats:

1. Understand the Threat:

   • The vulnerabilities enable unauthorized access, risking the security of your firewalls and networks.
   • CISA has issued directive BOD 23-02. This directive outlines how organizations can reduce their attack surface from misconfigured management interfaces.

2. Leverage Forward for Validation:

   • Identify devices exposed to these vulnerabilities.
   • Filter and prioritize affected devices, especially those connected to the internet

   The Forward platform provides a nightly update of CVE data, making vulnerability tracking more efficient.

3. Take Action:

   • Use Forward Networks' insights to prioritize remediation for exposed devices.
   • Avoid spending unnecessary time decoding technical CVE reports; Forward gives a clear list of your vulnerabilities and actionable steps.

Stay proactive in securing your networks, and don’t hesitate to reach out if you need more

guidance on using Forward to identify these threats. Let’s keep our systems safe!