Palo Alto Networks Expedition Tool Vulnerability Exposes Cleartext Firewall Passwords

Palo Alto Networks has disclosed multiple critical security vulnerabilities in its Expedition migration tool, including a concerning OS command injection flaw that enables attackers to execute arbitrary commands and access sensitive firewall credentials. The command injection vulnerability (CVE-2025-0107) allows authenticated attackers to run arbitrary OS commands as the www-data user, potentially exposing usernames, cleartext passwords, device…

Read More

CISA warned of Cyberattackers Exploiting a critical missing authentication vulnerability in Palo Alto Networks Expedition

CISA recently warned that attackers are exploiting a critical missing authentication vulnerability in Palo Alto Networks Expedition, a migration tool that can help convert firewall configuration from Checkpoint, Cisco, and other vendors to PAN-OS. This security flaw, tracked as CVE-2024-5910, was patched in July, and threat actors can remotely exploit it to reset application admin credentials on Internet-exposed Expedition…

Read More

CISA warns of critical Palo Alto Networks bug exploited in attacks

CISA recently warned that attackers are exploiting a critical missing authentication vulnerability in Palo Alto Networks Expedition, a migration tool that can help convert firewall configuration from Checkpoint, Cisco, and other vendors to PAN-OS. This security flaw, tracked as CVE-2024-5910, was patched in July, and threat actors can remotely exploit it to reset application admin credentials on Internet-exposed Expedition…

Read More

Palo Alto Networks and IBM to Jointly Provide AI-powered Security Offerings

IBM to Deliver Security Consulting Services Across Palo Alto Networks Security Platforms News Summary:  IBM to platformize internal security solutions with Palo Alto Networks; Palo Alto Networks will be its preferred cybersecurity partner across network, cloud and SOC Palo Alto Networks will incorporate watsonx large language models (LLMs) in Cortex XSIAM to deliver additional Precision…

Read More