Security Advisory

CVE-2024-5919

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-14 09:36:46

Last updated 2024-11-14 19:41:04

Assigner palo_alto

State PUBLISHED

Description

A blind XML External Entities (XXE) injection vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker to exfiltrate arbitrary files from firewalls to an attacker controlled server. This attack requires network access to the firewall management interface.

← Browse all CVEs View on cve.org ↗