CVE-2024-3400 is a critical Palo Alto GlobalProtect zero-day exploited by UTA0218 (nation-state) to deliver UPSTYLE backdoors. Upgrade PAN-OS immediately. If unpatched, treat the device as potentially compromised and review all logs from March 26, 2024 onward.
PAN-OS: OS Command Injection Vulnerability in GlobalProtect Gateway. A command injection as root is possible with unauthenticated network access.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →