tags:enterprise_appcommand_injectionITWpanw original link: Palo Alto - Putting The Protecc In GlobalProtect (CVE-2024-3400) newsletter link: exploits.club Weekly Newsletter 17
Exploits Club Summary:
More enterprise VPN issues and honestly who can be surprised at this point. As called out in this Watchtowr post, Volexity identified the vulnerability and did a great initial write-up. Watchtowr then followed that post with a deep dive into a root cause analysis and exploit of the vulnerability based on the CVE description. Plus, its full of memes and we love memes. TL;DR itâs a very sophisticatedâŠcommand injection.