Security Advisories April 2024 #1

Palo Alto Networks has published a new Security Advisory:

Please do check the already available workarounds and mitigations:
  1. Customers with a Threat Prevention subscription can block attacks for this vulnerability by enabling Threat ID 95187 (introduced in Applications and Threats content version 8833-8682). In addition to enabling Threat ID 95187, customers must ensure vulnerability protection has been applied to their GlobalProtect interface to prevent exploitation of this issue on their device. Please click here for more information.
  2. If you are unable to apply the Threat Prevention based mitigation at this time, you can still mitigate the impact of this vulnerability by temporarily disabling device telemetry until the device is upgraded to a fixed PAN-OS version. Once upgraded, device telemetry should be re-enabled on the device. Please see the following page for details on how to temporarily disable device telemetry.
live.paloaltonetworks.com

Applying Vulnerability Protection to GlobalProtect Interfaces

docs.paloaltonetworks.com

Disable Device Telemetry

Bundesamt für Sicherheit in der Informationstechnik

Palo Alto Networks Firewalls

For details and updates please visit the corresponding Palo Alto Security or contact us via support@nts.eu.