topic Re: Update PAN-OS 11.1.0 to 11.2.1? in Advanced Threat Prevention Discussions

Update PAN-OS 11.1.0 to 11.2.1?

Kiet-Vo — Wed, 10 Jul 2024 01:21:06 GMT

Hi all -

With regard to CVE-2024-3400 PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect and other issues, our PA-820 is running PAN- OS 11.1.0, should it be updated to PAN-OS 11.2.1?

Thank you

Re: Update PAN-OS 11.1.0 to 11.2.1?

reaper — Wed, 10 Jul 2024 09:00:26 GMT

The fix for cve-2024-3400 is in 11.1.2-h3 so i'd recommend going to that version (as it is currently also the recommended version)

11.2 is still very 'young' for production

Re: Update PAN-OS 11.1.0 to 11.2.1?

Kiet-Vo — Fri, 12 Jul 2024 04:52:48 GMT

Thank you for your suggestion

Re: Update PAN-OS 11.1.0 to 11.2.1?

joshuaeldrid.ge89 — Thu, 10 Oct 2024 09:41:30 GMT

I have been searching for such an informative post since many days and it seems my search jst ended here. Good work. Keep posting.