https://live.paloaltonetworks.com/t5/advanced-threat-prevention/open-port-9339-cve-2016-2183/m-p/572679#M2077 <P>Hi,</P> <P>After the update PA to version&nbsp;11.1.0 (currently we are using version 11.1.1 but the problem still exists), Nessus discovered open TCP port 9339 and alerted about vulnerability SWEET32 (screen attached below).</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="image.png" style="width: 613px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/56433iD2705885EB46BFC6/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="image.png" alt="image.png" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="image.png" style="width: 609px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/56434i528646A3164220BB/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="image.png" alt="image.png" /></span></P> <P>It is weird, because port 9339 is up despite of the fact that LLDP is disabled in our configuration (screen attached below):</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="PatrykChodurski_1-1704963348299.png" style="width: 400px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/56437i73AA2CD41A79D65F/image-size/medium/is-moderation-mode/true?v=v2&amp;px=400" role="button" title="PatrykChodurski_1-1704963348299.png" alt="PatrykChodurski_1-1704963348299.png" /></span></P> <P>&nbsp;</P> <P>&nbsp;</P> Thu, 11 Jan 2024 08:58:25 GMT PatrykChodurski 2024-01-11T08:58:25Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/open-port-9339-cve-2016-2183/m-p/572679#M2077 <P>Hi,</P> <P>After the update PA to version&nbsp;11.1.0 (currently we are using version 11.1.1 but the problem still exists), Nessus discovered open TCP port 9339 and alerted about vulnerability SWEET32 (screen attached below).</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="image.png" style="width: 613px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/56433iD2705885EB46BFC6/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="image.png" alt="image.png" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="image.png" style="width: 609px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/56434i528646A3164220BB/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="image.png" alt="image.png" /></span></P> <P>It is weird, because port 9339 is up despite of the fact that LLDP is disabled in our configuration (screen attached below):</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="PatrykChodurski_1-1704963348299.png" style="width: 400px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/56437i73AA2CD41A79D65F/image-size/medium/is-moderation-mode/true?v=v2&amp;px=400" role="button" title="PatrykChodurski_1-1704963348299.png" alt="PatrykChodurski_1-1704963348299.png" /></span></P> <P>&nbsp;</P> <P>&nbsp;</P> Thu, 11 Jan 2024 08:58:25 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/open-port-9339-cve-2016-2183/m-p/572679#M2077 PatrykChodurski 2024-01-11T08:58:25Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/open-port-9339-cve-2016-2183/m-p/579033#M2103 <P>Following for any updates...May end up making a ticket for it.</P> Fri, 01 Mar 2024 15:22:30 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/open-port-9339-cve-2016-2183/m-p/579033#M2103 Michael.Gossett 2024-03-01T15:22:30Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/open-port-9339-cve-2016-2183/m-p/615087#M2351 <P>This could be due to the usage of OpenConfig plugin which listens through Port 9339<BR /><A href="https://docs.paloaltonetworks.com/openconfig/1-0/openconfig-admin/getting-started/about-pan-os-openconfig-support" target="_blank">https://docs.paloaltonetworks.com/openconfig/1-0/openconfig-admin/getting-started/about-pan-os-openconfig-support</A></P> Sat, 26 Oct 2024 09:07:48 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/open-port-9339-cve-2016-2183/m-p/615087#M2351 gstephen 2024-10-26T09:07:48Z