Summary: Palo Alto Networks has issued a security advisory regarding multiple vulnerabilities in its Expedition migration tool, which could lead to unauthorized access and exposure of sensitive data. The tool, now at End of Life (EoL), is not recommended for production use, and users are urged to transition to alternatives.
Threat Actor: Unknown | unknown
Victim: Organizations using Expedition | organizations using Expedition
Key Point :
- Multiple vulnerabilities identified, including SQL Injection and Cross-Site Scripting.
- High-severity risks could expose sensitive data such as usernames and passwords.
- Organizations are advised to upgrade to version 1.2.101 or later and restrict access.
- Expedition is not intended for production environments and has reached EoL as of December 31, 2024.
- No malicious exploitation of these vulnerabilities has been reported yet.
Source: https://securityonline.info/mutiple-vulnerabilities-found-in-palo-alto-networks-expedition-tool/
Views: 0