Zero-Day Disclosure: Palo Alto Networks GlobalProtect VPN

Status: Informational

On November 10, 2021 Palo Alto Networks (PAN) provided an update that patched CVE-2021-3064 which was discovered and disclosed by Randori. This vulnerability affects PAN firewalls using the GlobalProtect Portal VPN and allows for unauthenticated remote code execution on vulnerable installations of the product. The issue affects multiple versions of PAN-OS 8.1 prior to 8.1.17 and Randori has found numerous vulnerable instances exposed on internet-facing assets, in excess of 10,000 assets.

Revolt Recommends:
You can check for new PAN-OS releases directly in the firewall, or on the Palo Alto Networks support portal