CVE-2024-2433 - Vulnerability Details - OpenCVE

An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. This issue affects only the web interface of the management plane; the dataplane is unaffected.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00036.

Key SSVC decision points have not yet been added.

Vendors	Products
Paloaltonetworks	Pan-os

Configuration 1 [-]

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:h1::::::

No data.

No data.

References

Link	Providers
https://security.paloaltonetworks.com/CVE-2024-2433

History

Fri, 30 Jan 2026 21:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Paloaltonetworks Paloaltonetworks pan-os
CPEs		cpe:2.3:o:paloaltonetworks:pan-os:::::::: cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:h1::::::
Vendors & Products		Paloaltonetworks Paloaltonetworks pan-os

MITRE

Status: PUBLISHED

Assigner: palo_alto

Published: 2024-03-13T17:51:45.578Z

Updated: 2024-08-12T18:54:08.465Z

Reserved: 2024-03-13T16:19:27.817Z

Link: CVE-2024-2433

Vulnrichment

Updated: 2024-08-01T19:11:53.562Z

NVD

Status : Analyzed

Published: 2024-03-13T18:15:08.893

Modified: 2026-01-30T20:58:17.900

Link: CVE-2024-2433

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-2433", "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "state": "PUBLISHED", "assignerShortName": "palo_alto", "dateReserved": "2024-03-13T16:19:27.817Z", "datePublished": "2024-03-13T17:51:45.578Z", "dateUpdated": "2024-08-12T18:54:08.465Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Panorama"], "product": "PAN-OS", "vendor": "Palo Alto Networks", "versions": [{"changes": [{"at": "9.0.17-h4", "status": "unaffected"}], "lessThan": "9.0.17-h4", "status": "affected", "version": "9.0", "versionType": "custom"}, {"changes": [{"at": "9.1.17", "status": "unaffected"}], "lessThan": "9.1.17", "status": "affected", "version": "9.1", "versionType": "custom"}, {"changes": [{"at": "10.1.12", "status": "unaffected"}], "lessThan": "10.1.12", "status": "affected", "version": "10.1", "versionType": "custom"}, {"changes": [{"at": "10.2.8", "status": "unaffected"}], "lessThan": "10.2.8", "status": "affected", "version": "10.2", "versionType": "custom"}, {"changes": [{"at": "11.0.3", "status": "unaffected"}], "lessThan": "11.0.3", "status": "affected", "version": "11.0", "versionType": "custom"}, {"status": "unaffected", "version": "11.1"}]}, {"defaultStatus": "unaffected", "product": "Cloud NGFW", "vendor": "Palo Alto Networks", "versions": [{"status": "unaffected", "version": "All"}]}, {"defaultStatus": "unaffected", "product": "Prisma Access", "vendor": "Palo Alto Networks", "versions": [{"status": "unaffected", "version": "All"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Palo Alto Networks thanks Omar Eissa (https://de.linkedin.com/in/oeissa) for discovering and reporting this issue."}], "datePublic": "2024-03-13T16:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. <br><br>\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.<br>"}], "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. \n\n\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.\n"}], "exploits": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.<br>"}], "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "shortName": "palo_alto", "dateUpdated": "2024-03-13T17:51:45.578Z"}, "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-2433"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "This issue is fixed in Panorama on PAN-OS 9.0.17-h4, PAN-OS 9.1.18, PAN-OS 10.1.12, PAN-OS 10.2.11, PAN-OS 11.0.4, and all later PAN-OS versions.<br>"}], "value": "This issue is fixed in Panorama on PAN-OS 9.0.17-h4, PAN-OS 9.1.18, PAN-OS 10.1.12, PAN-OS 10.2.11, PAN-OS 11.0.4, and all later PAN-OS versions.\n"}], "source": {"defect": ["PAN-181876", "PAN-218663"], "discovery": "EXTERNAL"}, "timeline": [{"lang": "en", "time": "2024-03-13T16:00:00.000Z", "value": "Initial publication"}], "title": "PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the effect of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at <a target=\"_blank\" rel=\"nofollow\" href=\"https://docs.paloaltonetworks.com/best-practices\">https://docs.paloaltonetworks.com/best-practices</a>.<br>"}], "value": "This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the effect of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at https://docs.paloaltonetworks.com/best-practices .\n"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T19:11:53.562Z"}, "title": "CVE Program Container", "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-2433", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "paloaltonetworks", "product": "pan-os", "cpes": ["cpe:2.3:a:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "9.0", "status": "affected", "lessThan": "9.0.17-h4", "versionType": "custom"}, {"version": "9.1", "status": "affected", "lessThan": "9.1.17", "versionType": "custom"}, {"version": "10.1", "status": "affected", "lessThan": "10.1.12", "versionType": "custom"}, {"version": "10.2", "status": "affected", "lessThan": "10.2.8", "versionType": "custom"}, {"version": "11.0", "status": "affected", "lessThan": "11.0.3", "versionType": "custom"}]}, {"vendor": "paloaltonetworks", "product": "pan-os", "cpes": ["cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "11.1.0", "status": "unaffected"}]}, {"vendor": "paloaltonetworks", "product": "cloud_ngfw", "cpes": ["cpe:2.3:a:paloaltonetworks:cloud_ngfw:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "*", "versionType": "custom"}]}, {"vendor": "paloaltonetworks", "product": "prisma_access", "cpes": ["cpe:2.3:a:paloaltonetworks:prisma_access:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "*", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-03-13T19:59:46.619572Z", "id": "CVE-2024-2433", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T18:54:08.465Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-2433", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T19:11:53.562Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-2433", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-03-13T19:59:46.619572Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*"], "vendor": "paloaltonetworks", "product": "pan-os", "versions": [{"status": "affected", "version": "9.0", "lessThan": "9.0.17-h4", "versionType": "custom"}, {"status": "affected", "version": "9.1", "lessThan": "9.1.17", "versionType": "custom"}, {"status": "affected", "version": "10.1", "lessThan": "10.1.12", "versionType": "custom"}, {"status": "affected", "version": "10.2", "lessThan": "10.2.8", "versionType": "custom"}, {"status": "affected", "version": "11.0", "lessThan": "11.0.3", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:-:*:*:*:*:*:*"], "vendor": "paloaltonetworks", "product": "pan-os", "versions": [{"status": "unaffected", "version": "11.1.0"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:paloaltonetworks:cloud_ngfw:*:*:*:*:*:*:*:*"], "vendor": "paloaltonetworks", "product": "cloud_ngfw", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "*"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:paloaltonetworks:prisma_access:*:*:*:*:*:*:*:*"], "vendor": "paloaltonetworks", "product": "prisma_access", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "*"}], "defaultStatus": "unaffected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T18:54:00.673Z"}}], "cna": {"title": "PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss", "source": {"defect": ["PAN-181876", "PAN-218663"], "discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Palo Alto Networks thanks Omar Eissa (https://de.linkedin.com/in/oeissa) for discovering and reporting this issue."}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Palo Alto Networks", "product": "PAN-OS", "versions": [{"status": "affected", "changes": [{"at": "9.0.17-h4", "status": "unaffected"}], "version": "9.0", "lessThan": "9.0.17-h4", "versionType": "custom"}, {"status": "affected", "changes": [{"at": "9.1.17", "status": "unaffected"}], "version": "9.1", "lessThan": "9.1.17", "versionType": "custom"}, {"status": "affected", "changes": [{"at": "10.1.12", "status": "unaffected"}], "version": "10.1", "lessThan": "10.1.12", "versionType": "custom"}, {"status": "affected", "changes": [{"at": "10.2.8", "status": "unaffected"}], "version": "10.2", "lessThan": "10.2.8", "versionType": "custom"}, {"status": "affected", "changes": [{"at": "11.0.3", "status": "unaffected"}], "version": "11.0", "lessThan": "11.0.3", "versionType": "custom"}, {"status": "unaffected", "version": "11.1"}], "platforms": ["Panorama"], "defaultStatus": "unaffected"}, {"vendor": "Palo Alto Networks", "product": "Cloud NGFW", "versions": [{"status": "unaffected", "version": "All"}], "defaultStatus": "unaffected"}, {"vendor": "Palo Alto Networks", "product": "Prisma Access", "versions": [{"status": "unaffected", "version": "All"}], "defaultStatus": "unaffected"}], "exploits": [{"lang": "en", "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.\n", "supportingMedia": [{"type": "text/html", "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.<br>", "base64": false}]}], "timeline": [{"lang": "en", "time": "2024-03-13T16:00:00.000Z", "value": "Initial publication"}], "solutions": [{"lang": "en", "value": "This issue is fixed in Panorama on PAN-OS 9.0.17-h4, PAN-OS 9.1.18, PAN-OS 10.1.12, PAN-OS 10.2.11, PAN-OS 11.0.4, and all later PAN-OS versions.\n", "supportingMedia": [{"type": "text/html", "value": "This issue is fixed in Panorama on PAN-OS 9.0.17-h4, PAN-OS 9.1.18, PAN-OS 10.1.12, PAN-OS 10.2.11, PAN-OS 11.0.4, and all later PAN-OS versions.<br>", "base64": false}]}], "datePublic": "2024-03-13T16:00:00.000Z", "references": [{"url": "https://security.paloaltonetworks.com/CVE-2024-2433"}], "workarounds": [{"lang": "en", "value": "This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the effect of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at https://docs.paloaltonetworks.com/best-practices .\n", "supportingMedia": [{"type": "text/html", "value": "This issue requires the attacker to have authenticated access to the PAN-OS web interface. You can mitigate the effect of this issue by following the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at <a target=\"_blank\" rel=\"nofollow\" href=\"https://docs.paloaltonetworks.com/best-practices\">https://docs.paloaltonetworks.com/best-practices</a>.<br>", "base64": false}]}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. \n\n\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.\n", "supportingMedia": [{"type": "text/html", "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. <br><br>\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.<br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management"}]}], "providerMetadata": {"orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "shortName": "palo_alto", "dateUpdated": "2024-03-13T17:51:45.578Z"}}}, "cveMetadata": {"cveId": "CVE-2024-2433", "state": "PUBLISHED", "dateUpdated": "2024-08-12T18:54:08.465Z", "dateReserved": "2024-03-13T16:19:27.817Z", "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "datePublished": "2024-03-13T17:51:45.578Z", "assignerShortName": "palo_alto"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "DB6AEA1F-5E27-41F9-A6E4-12BCD88F5688", "versionEndExcluding": "9.0.17", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "9F9FFBA6-7008-422B-9CF1-E37CA62081EB", "versionEndExcluding": "9.1.17", "versionStartIncluding": "9.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "AC18B586-8FE2-4362-9F60-490FCB52569F", "versionEndExcluding": "10.1.12", "versionStartIncluding": "10.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "C430BDF9-C688-47F9-BE38-D75460AE5B17", "versionEndExcluding": "10.2.8", "versionStartIncluding": "10.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "A6B9B8A6-A4A7-4C14-9D22-50FEF531F15D", "versionEndExcluding": "11.0.3", "versionStartIncluding": "11.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:-:*:*:*:*:*:*", "matchCriteriaId": "CDAE9753-EF8D-4B15-A73C-0EF56FE6C78C", "vulnerable": true}, {"criteria": "cpe:2.3:o:paloaltonetworks:pan-os:9.0.17:h1:*:*:*:*:*:*", "matchCriteriaId": "2A142EE1-E516-4582-9A7E-6E4C74FB3991", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenticated read-only administrator to upload files using the web interface and completely fill one of the disk partitions with those uploaded files, which prevents the ability to log into the web interface or to download PAN-OS, WildFire, and content images. \n\n\n\nThis issue affects only the web interface of the management plane; the dataplane is unaffected.\n"}, {"lang": "es", "value": "Una vulnerabilidad de autorizaci\u00f3n inadecuada en el software Panorama de Palo Alto Networks permite que un administrador autenticado de solo lectura cargue archivos utilizando la interfaz web y llene completamente una de las particiones del disco con esos archivos cargados, lo que impide iniciar sesi\u00f3n en la interfaz web o descargarlos. PAN-OS, WildFire e im\u00e1genes de contenido. Este problema afecta \u00fanicamente a la interfaz web del plano de gesti\u00f3n; el plano de datos no se ve afectado."}], "id": "CVE-2024-2433", "lastModified": "2026-01-30T20:58:17.900", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "psirt@paloaltonetworks.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-03-13T18:15:08.893", "references": [{"source": "psirt@paloaltonetworks.com", "tags": ["Vendor Advisory"], "url": "https://security.paloaltonetworks.com/CVE-2024-2433"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://security.paloaltonetworks.com/CVE-2024-2433"}], "sourceIdentifier": "psirt@paloaltonetworks.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "psirt@paloaltonetworks.com", "type": "Secondary"}]}