zeeshan khan
A major alert has been released by the National Computer Emergency Response Team (NCERT) about an Internet DNS Connectivity flaw in the company’s PAN-OS, known as CVE-2024-3393.
Hackers can take advantage of this vulnerability by sending specifically constructed DNS queries because it results from incorrect validation of input and storage handling inside the DNS Privacy feature.
Because it may be abused with no verification, this vulnerability presents a serious danger to enterprises. The company Palo Alto Networks has addressed the problem with upgrades and is recommending urgent action to protect impacted systems and devices.Â
Mitigation StrategiesÂ
The alert states that exploiting CVE-2024-3393 can have serious consequences, including interruption of services. interruption of vital traffic assessment, DNS demand evaluating failure, and extended firewall outages.Â
The functioning of impacted systems is put in danger by these outages, leaving cloud and business settings open to additional assaults and the possible disclosure of private information. NCERT highlighted the need it is for businesses to use patching and reducing techniques in order to safeguard their computer systems.
PAN-OS Vulnerability
Several PAN-OS editions are affected by the vulnerability, including all 10.0 versions, before 10.1.10, 10.2.7, and 11.0.3. To repair the problem, Palo Alto Networks advises updating to the PAN-OS versions that have been resolved. Emergency mitigation strategies for companies that can’t fix their systems right once include turning off DNS Security logging, dividing up impacted devices, improving monitoring, putting restricted rules for firewalls in place, and checking log files for indications of manipulation.
DNS Security Risk Mitigation
It is suggested that admins use safety policies to stop DNS Protection cutting down, or establish assistance tickets for Prisma Accessible tenants to temporarily disable the capability. Other measures to reduce risks include limiting access restrictions, implementing tools for tracking, and separating impacted devices from important assets. Early identification of any attack attempts also depends on routine log inspections for irregularities in DNS traffic.
System Security Alert
Avoiding steps to mitigate might result in operational interruptions and safety incidents, according to National CERT. Companies are advised to safeguard their network settings and quickly update their equipment. Referrals from Palo Alto Networks advice along with other relevant sources highlight how serious this issue is and how quick action is needed to preserve system security
