Security Advisory

CVE-2024-2433

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-13 17:51:45

Last updated 2026-05-13 20:17:13

Assigner palo_alto

State PUBLISHED

Description

An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. This issue affects only the web interface of the management plane; the dataplane is unaffected.

← Browse all CVEs View on cve.org ↗