{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Cloud NGFW sans les correctifs de s\u00e9curit\u00e9 du 23 ao\u00fbt 2024 sur AWS","product":{"name":"Cloud NGFW","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"PAN-OS versions 10.2.x ant\u00e9rieures \u00e0 10.2.8","product":{"name":"PAN-OS","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"GlobalProtect App versions 6.2.x ant\u00e9rieures \u00e0 6.2.4 sur Windows","product":{"name":"GlobalProtect App","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"GlobalProtect App versions 5.1.x sur Windows (correctif pr\u00e9vu en d\u00e9cembre 2024)","product":{"name":"GlobalProtect App","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"Cloud NGFW sans les correctifs de s\u00e9curit\u00e9 du 15 ao\u00fbt 2024 sur Azure","product":{"name":"Cloud NGFW","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"Cortex XSOAR CommonScripts versions ant\u00e9rieures \u00e0 1.12.33","product":{"name":"Cortex XSOAR CommonScripts","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"GlobalProtect App versions 6.3.x sur Windows (correctif pr\u00e9vu pour la fin ao\u00fbt 2024)","product":{"name":"GlobalProtect App","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"PAN-OS versions 11.0.x ant\u00e9rieures \u00e0 11.0.4","product":{"name":"PAN-OS","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"GlobalProtect App versions 6.1.x ant\u00e9rieures \u00e0 6.1.5 sur Windows","product":{"name":"GlobalProtect App","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"Prisma Access Browser versions ant\u00e9rieures \u00e0 127.100.2858.4","product":{"name":"Prisma Access Browser","vendor":{"name":"Palo Alto Networks","scada":false}}},{"description":"GlobalProtect App versions 6.0.x sur Windows (correctif pr\u00e9vu en novembre 2024)","product":{"name":"GlobalProtect App","vendor":{"name":"Palo Alto Networks","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2024-7000","url":"https://www.cve.org/CVERecord?id=CVE-2024-7000"},{"name":"CVE-2024-7256","url":"https://www.cve.org/CVERecord?id=CVE-2024-7256"},{"name":"CVE-2024-6989","url":"https://www.cve.org/CVERecord?id=CVE-2024-6989"},{"name":"CVE-2024-6772","url":"https://www.cve.org/CVERecord?id=CVE-2024-6772"},{"name":"CVE-2024-6997","url":"https://www.cve.org/CVERecord?id=CVE-2024-6997"},{"name":"CVE-2024-6995","url":"https://www.cve.org/CVERecord?id=CVE-2024-6995"},{"name":"CVE-2024-6778","url":"https://www.cve.org/CVERecord?id=CVE-2024-6778"},{"name":"CVE-2024-6779","url":"https://www.cve.org/CVERecord?id=CVE-2024-6779"},{"name":"CVE-2024-7533","url":"https://www.cve.org/CVERecord?id=CVE-2024-7533"},{"name":"CVE-2024-7005","url":"https://www.cve.org/CVERecord?id=CVE-2024-7005"},{"name":"CVE-2024-7004","url":"https://www.cve.org/CVERecord?id=CVE-2024-7004"},{"name":"CVE-2024-5915","url":"https://www.cve.org/CVERecord?id=CVE-2024-5915"},{"name":"CVE-2024-6999","url":"https://www.cve.org/CVERecord?id=CVE-2024-6999"},{"name":"CVE-2024-6988","url":"https://www.cve.org/CVERecord?id=CVE-2024-6988"},{"name":"CVE-2024-7001","url":"https://www.cve.org/CVERecord?id=CVE-2024-7001"},{"name":"CVE-2024-7255","url":"https://www.cve.org/CVERecord?id=CVE-2024-7255"},{"name":"CVE-2024-7535","url":"https://www.cve.org/CVERecord?id=CVE-2024-7535"},{"name":"CVE-2024-5916","url":"https://www.cve.org/CVERecord?id=CVE-2024-5916"},{"name":"CVE-2024-6996","url":"https://www.cve.org/CVERecord?id=CVE-2024-6996"},{"name":"CVE-2024-6994","url":"https://www.cve.org/CVERecord?id=CVE-2024-6994"},{"name":"CVE-2024-7532","url":"https://www.cve.org/CVERecord?id=CVE-2024-7532"},{"name":"CVE-2024-6774","url":"https://www.cve.org/CVERecord?id=CVE-2024-6774"},{"name":"CVE-2024-7550","url":"https://www.cve.org/CVERecord?id=CVE-2024-7550"},{"name":"CVE-2024-7534","url":"https://www.cve.org/CVERecord?id=CVE-2024-7534"},{"name":"CVE-2024-7003","url":"https://www.cve.org/CVERecord?id=CVE-2024-7003"},{"name":"CVE-2024-6998","url":"https://www.cve.org/CVERecord?id=CVE-2024-6998"},{"name":"CVE-2024-6777","url":"https://www.cve.org/CVERecord?id=CVE-2024-6777"},{"name":"CVE-2024-6776","url":"https://www.cve.org/CVERecord?id=CVE-2024-6776"},{"name":"CVE-2024-6773","url":"https://www.cve.org/CVERecord?id=CVE-2024-6773"},{"name":"CVE-2024-5914","url":"https://www.cve.org/CVERecord?id=CVE-2024-5914"},{"name":"CVE-2024-6990","url":"https://www.cve.org/CVERecord?id=CVE-2024-6990"},{"name":"CVE-2024-6775","url":"https://www.cve.org/CVERecord?id=CVE-2024-6775"},{"name":"CVE-2024-7536","url":"https://www.cve.org/CVERecord?id=CVE-2024-7536"},{"name":"CVE-2024-6991","url":"https://www.cve.org/CVERecord?id=CVE-2024-6991"}],"links":[],"reference":"CERTFR-2024-AVI-0691","revisions":[{"description":"Version initiale","revision_date":"2024-08-16T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Palo Alto Networks. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Palo Alto Networks","vendor_advisories":[{"published_at":"2024-08-14","title":"Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CRTX-95034","url":"https://security.paloaltonetworks.com/CVE-2024-5914"},{"published_at":"2024-08-14","title":"Bulletin de s\u00e9curit\u00e9 Palo Alto Networks PAN-SA-2024-0007","url":"https://security.paloaltonetworks.com/PAN-SA-2024-0007"},{"published_at":"2024-08-14","title":"Bulletin de s\u00e9curit\u00e9 Palo Alto Networks PAN-231823","url":"https://security.paloaltonetworks.com/CVE-2024-5916"},{"published_at":"2024-08-14","title":"Bulletin de s\u00e9curit\u00e9 Palo Alto Networks GPC-14958 et GPC-19883","url":"https://security.paloaltonetworks.com/CVE-2024-5915"}]}