Threat & Vulnerability Discussions
This forum provides information regarding how to detect and prevent the impact of vulnerabilities, malware, and other threats through the use of the Palo Alto Networks security platform.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Threat & Vulnerability Discussions
This forum provides information regarding how to detect and prevent the impact of vulnerabilities, malware, and other threats through the use of the Palo Alto Networks security platform.
About Threat & Vulnerability Discussions

Welcome to the Threat and Vulnerability discussion forum. This forum exists as a resource for security professionals to discuss and share information pertaining to the topics of threats and vulnerabilities.
Not a LIVEcommunity member? Simply click here and register!

Discussions

Resolved! Blocking Scammer website (cryptocurrency)

I stumbled accros this article on Bleeping Computers

https://www.bleepingcomputer.com/news/security/tiktok-flooded-by-elon-musk-cryptocurrency-giveaway-scams/

To my surprise the URL's mentioned in the article where considered safe. 

Palo Alto had the

...

Remko by L1 Bithead
  • 5095 Views
  • 7 replies
  • 0 Likes

Cortex XDR Remote account enumeration

Hello,

today we have interesting alert

 

At least 33 distinct non-existing accounts failed to remotely log in to XX-Laptop1. Users list: name.user, user name, user.name, username

 

User has no idea - all day at school, behind NAT. What I cannot reall

...

LukasB_0-1663265938108.png
LukasB_1-1663266012645.png
LukasB by L2 Linker
  • 3092 Views
  • 3 replies
  • 1 Likes

out of date CVEs

I am curious about the listing of vulnerabilities in the vulnerabilities assessment.  It seems like it is catching old out dated CVE's and attaching them to fully updated machines.  for example i have numerous machines showing a vulnerability CVE-202

...

Apps and Threats Mismatch

Hi All

 

I have a pair of Panorama managed Firewalls configured in a HA Setup . However I m observing a mismatch on the App and Threat versions across both devices . Although the "Synch To Peer" option is enabled on the App and Threat schedule settin

...

Passive-AppandThreat.jpg
Active-AppandThreat.jpg
File2.jpg
File1.jpg

Vulnerability Protection Profile

Hello!

 

I have a rule with a vulnerability protection profile enabled between my VPN users and DMZ.

I need to WebGUI (8443/8080) into a new DMZ server, but VP is stopping it.

How do I make an exception for this traffic?

 

Thanks,

DC

DCleve by L0 Member
  • 1644 Views
  • 3 replies
  • 0 Likes

Resolved! False Positive

Please remove our domain from any blacklists:

https://forms.clickup.com 

 

We were informed by a number of joint customers that our domain was being blocked by Palo Alto NGFW, classified as a High Risk phishing site ultimately being blocked from acce

...

CVE-2023-38046 PAN-OS: 구성 커밋 중 시스템 파일 및 리소스 읽기

원본 링크

https://security.paloaltonetworks.com/CVE-2023-38046

공격 벡터: 네트워크    

범위: 변경 없음

공격 복잡도: 낮음

기밀성 영향: 높음

필요한 권한: 높음

무결성 영향: 낮음

사용자 상호 작용: 없음
가용성 영향: 없음

게시 2023-07-13
업데이트 2023-07-13
참조 PAN-208922
외부에서 발견됨

 

설명:

Palo Alto Networks PAN-OS 소프트웨어에는 특별히 생

...

yyu_0-1689578834166.png
yyu_1-1689579200632.png
yyu by L4 Transporter
  • 1024 Views
  • 1 replies
  • 0 Likes
  • 476 Posts
  • 63 Subscriptions
Top Solution Authors
Top Liked Authors