Administered by:
Palo Alto is warning of active exploitation of zero-day vulnerability in PAN-OS.
The vulnerability is tracked as CVE-2024-3400, and when exploited, can allow an attacker to execute code with admin privileges. No patch is currently available.
Palo Alto is advising administrators to activate "Threat ID 95187" if they subscribe to Threat Prevention, vulnerability protection is configured on GlobalProtect interfaces, and to disable device telemetry.
UPDATE: Palo Alto has released software updates to fix the zero-day vulnerability
Administrators are advised to patch ASAP