Skip to main content

Expedition CVE-2024-9464

CRITICAL
OS Command Injection (CWE-78)
2024-10-09 psirt@paloaltonetworks.com
9.3
CVSS 4.0 · Vendor: paloaltonetworks
Share

Severity by source

Vendor (paloaltonetworks) PRIMARY
9.3 CRITICAL
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:H/U:Amber

Primary rating from Vendor (paloaltonetworks) · only source for this CVE.

CVSS VectorVendor: paloaltonetworks

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:H/U:Amber
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

1
CVE Published
Oct 09, 2024 - 17:15 cve.org
CRITICAL 9.3

DescriptionCVE.org

An OS command injection vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to run arbitrary OS commands as root in Expedition, resulting in disclosure of usernames, cleartext passwords, device configurations, and device API keys of PAN-OS firewalls.

AnalysisAI

An OS command injection vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to run arbitrary OS commands as root in Expedition, resulting in disclosure of usernames,. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as OS Command Injection (CWE-78), which allows attackers to execute arbitrary operating system commands on the host. An OS command injection vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to run arbitrary OS commands as root in Expedition, resulting in disclosure of usernames, cleartext passwords, device configurations, and device API keys of PAN-OS firewalls. Affected products include: Paloaltonetworks Expedition.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Avoid passing user input to shell commands. Use language-specific APIs instead of shell execution. Apply strict input validation with allowlists.

CVE-2025-0107 HIGH POC
7.7 Jan 11

Palo Alto Networks Expedition contains an unauthenticated OS command injection vulnerability that allows attackers to ex

CVE-2024-5910 CRITICAL POC
9.3 Jul 10

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account

CVE-2024-9463 CRITICAL POC
9.9 Oct 09

An OS command injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to run arbitra

CVE-2018-10143 CRITICAL POC
9.8 Dec 12

The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated attacker with remote a

CVE-2024-9465 CRITICAL POC
9.2 Oct 09

An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to reveal Expedition

CVE-2019-1571 MEDIUM POC
4.8 Mar 26

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML

CVE-2019-1570 MEDIUM POC
4.8 Mar 26

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML

CVE-2019-1569 MEDIUM POC
4.8 Mar 26

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML

CVE-2024-9466 HIGH
8.2 Oct 09

A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition allows an authenticated atta

CVE-2018-10142 HIGH
7.5 Nov 27

The Expedition Migration tool 1.0.106 and earlier may allow an unauthenticated attacker to enumerate files on the operat

CVE-2024-9467 HIGH
7.0 Oct 09

A reflected XSS vulnerability in Palo Alto Networks Expedition enables execution of malicious JavaScript in the context

CVE-2025-0106 MEDIUM
6.9 Jan 11

A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate file

Share

CVE-2024-9464 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy