CVE-2024-3386
EUVD-2024-3197510.04.2024, 17:15
An incorrect string comparison vulnerability in Palo Alto Networks PAN-OS software prevents Predefined Decryption Exclusions from functioning as intended. This can cause traffic destined for domains that are not specified in Predefined Decryption Exclusions to be unintentionally excluded from decryption.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| paloaltonetworks | pan-os | 9.0.0 ≤ 𝑥 < 9.0.16 |
| paloaltonetworks | pan-os | 9.1.0 ≤ 𝑥 < 9.1.17 |
| paloaltonetworks | pan-os | 10.0.0 ≤ 𝑥 < 10.0.13 |
| paloaltonetworks | pan-os | 10.1.0 ≤ 𝑥 ≤ 10.1.8 |
| paloaltonetworks | pan-os | 10.2.0 ≤ 𝑥 < 10.2.4 |
| paloaltonetworks | pan-os | 11.0.0 ≤ 𝑥 < 11.0.1 |
| paloaltonetworks | pan-os | 9.0.17 |
| paloaltonetworks | pan-os | 9.0.17:h1 |
| paloaltonetworks | pan-os | 10.1.9 |
| paloaltonetworks | pan-os | 10.1.9:h1 |
| paloaltonetworks | pan-os | 10.2.4 |
| paloaltonetworks | pan-os | 11.0.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration