CISA warns of Palo Alto vulnerability exploited by hackers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that threat actors are actively exploiting a vulnerability that affects Palo Alto Networks PAN-OS. The vulnerability, which is tracked as CVE-2022-0028, has a severity score of 8.6.

The vulnerability is due to incorrect configuration of URL filtering policies, which could allow an unauthenticated remote attacker to conduct reflected and amplified TCP Denial-of-Service DoS attacks.

Affected product versions include PAN-OS 10.2 (version < 10.2.2-h2), PAN-OS 10.1 (version < 10.1.6-h6), PAN-OS 10.0 (version < 10.0.11-h1), PAN-OS 9.1 (version < 9.1.14-h4), PAN-OS 9.0 (version < 9.0.16-h3), and PAN-OS 8.1 (version < 8.1.23-h1).

Customers of affected products are advised to apply the patches to mitigate potential threats, and Federal Civilian Branch (FCEB) agencies are required to update to the latest version by September 12, 2022.

Palo Alto Networks said the vulnerability was discovered after it was pointed out that vulnerable firewall appliances from various vendors, including their networks, were being used as part of an attempted reflected denial-of -service (RDoS) attack.

The sources for this piece include an article in TheHackerNews.

IT World Canada Staff
IT World Canada Staff
The online resource for Canadian Information Technology professionals.

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

ITW in your inbox

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

More Best of The Web