cvedb.io
CVE-2024-3383
HIGH · CVSS 7.4
EPSS exploitation probability: 0%
Published 2024-04-10T17:15:57.000 · Last modified 2026-06-17T07:44:10.377

Summary

A vulnerability in how Palo Alto Networks PAN-OS software processes data received from Cloud Identity Engine (CIE) agents enables modification of User-ID groups. This impacts user access to network resources where users may be inappropriately denied or allowed access to resources based on your existing Security Policy rules.

Affected products

paloaltonetworks — pan-os

Does this affect you?

Add your gear to cvedb and we'll alert you only when paloaltonetworks ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.