Unrated severityCISA KEVNVD Advisory· Published Nov 18, 2024· Updated Oct 21, 2025

PAN-OS: Privilege Escalation (PE) Vulnerability in the Web Management Interface

CVE-2024-9474

Description

A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administrator with access to the management web interface to perform actions on the firewall with root privileges.

Cloud NGFW and Prisma Access are not impacted by this vulnerability.

Affected products

Palo Alto Networks/Cloud NGFWv5
Range: All
Paloaltonetworks/Pan Osv5
Range: 11.2.0
Palo Alto Networks/Prisma Accessv5
Range: All

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.paloaltonetworks.com/CVE-2024-9474mitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.075
exploit	0.030
kev	0.120
patch	0.000
ransomware	0.060