HTTP: Palo Alto Networks Expedition CHECKPOINT.php SQL Injection
This signature detects attempts to exploit a known vulnerability against Palo Alto Networks Expedition CHECKPOINT.php. A successful attack can lead to command injection and arbitrary code execution.
Extended Description
An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, and device API keys. With this, attackers can also create and read arbitrary files on the Expedition system.
Affected Products
Paloaltonetworks expedition
Short Name
HTTP:SQL:INJ:PALO-ALTO-NW-CHKPT
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Alto CHECKPOINT.php CVE-2024-9465 Expedition Injection Networks Palo SQL
Release Date
11/12/2024
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3757
False Positive
Unknown
Vendors
Paloaltonetworks