topic Re: Query for CVE-2024-3400 in Advanced Threat Prevention Discussions

Query for CVE-2024-3400

shirishkulkarni — Mon, 15 Apr 2024 06:55:29 GMT

Hello Team,

Work around is for mentioned vul is to install latest Applications and Threats content version

Applications and Threats content version 8833-8684 is already installed in our firewall, could you please confirm is our firewall affected? do we need to check anything else?

Re: Query for CVE-2024-3400

reaper — Tue, 16 Apr 2024 08:36:10 GMT

are you using vulnerability protection in the rule that is allowing access to your globalprotect gateway and portal ? (e.g. untrust to untrust panos-global-protect/ssl/ipsec/.. allow)

that is the most important part

Re: Query for CVE-2024-3400

shirishkulkarni — Thu, 18 Apr 2024 04:55:47 GMT

We have disabled GP portal login page, does it help with this vulnerability

Re: Query for CVE-2024-3400

mb_equate — Tue, 23 Apr 2024 01:33:51 GMT

disabling the login page only renders a 404, the web server is still active. If you have not patched or enabled threat prevention you are still vulnerable.