Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Critical Vulnerability in Palo Alto Networks Expedition Migration Tool
Alerts

Critical Vulnerability in Palo Alto Networks Expedition Migration Tool

12 July 2024

Updated on 12 Nov 2024

The critical vulnerability, CVE-2024-5910, in the Palo Alto Networks Expedition Migration Tool is currently being actively exploited.

***

Palo Alto Networks has released security updates addressing a critical vulnerability (CVE-2024-5910) in their Expedition migration tool.

Successful exploitation of the vulnerability could allow an attacker with network access to Expedition to take over an admin account due to the lack of authentication for a critical function in the vulnerable tool.

The vulnerability affects Palo Alto Networks Expedition versions prior to 1.2.92.

Users and administrators of affected products are advised to update to the latest versions immediately.

More information is available here:

https://nvd.nist.gov/vuln/detail/CVE-2024-5910

https://security.paloaltonetworks.com/CVE-2024-5910

https://thehackernews.com/2024/07/palo-alto-networks-patches-critical.html

Back to top