Palo Alto PAN-OS Had Trivial PHP Security Vulns
Posted on 2024-11-19: https://labs.watchtowr.com/pots-and-pans-aka-an-sslvpn-palo-alto-pan-os-cve-2024-0012-and-cve-2024-9474/
CVE-2024-0012:
We simply… supply the
offvalue to theX-PAN-AUTHCHECKHTTP request header, and the server helpfully turns off authentication?!
CVE-2024-9474:
Somehow a user is able to pass a username containing shell metacharacters into the
AuditLog.write()function, which then passes its value topexecute().
what silly PHP bugs to be found in year 2024 :)