Unrated severityNVD Advisory· Published Sep 11, 2024· Updated Sep 11, 2024
PAN-OS: User Impersonation in GlobalProtect Portal
CVE-2024-8691
Description
A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a malicious authenticated GlobalProtect user to impersonate another GlobalProtect user. Active GlobalProtect users impersonated by an attacker who is exploiting this vulnerability are disconnected from GlobalProtect. Upon exploitation, PAN-OS logs indicate that the impersonated user authenticated to GlobalProtect, which hides the identity of the attacker.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4(expand)+ 1 more
- (no CPE)
- (no CPE)range: 9.1.0
- Range: All
- Range: All
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.