CVE-2024-3400: PAN-OS Command Injection — WASTELAND

Published: 2026-03-07

What Is It?

A command injection in GlobalProtect portal/gateway on Palo Alto PAN-OS.

Why It Matters

CISA added it to KEV and exploitation has been observed.

What's Vulnerable

PAN-OS 10.2, 11.0, 11.1 versions before vendor hotfixes.

Patch Status

Vendor fixes available.

Sources

CISA KEV
NVD

Back to Intel · Home