Monitoring
“Customers using DNS security logging are at risk of a ‘Denial of Service’ vulnerability, allowing attackers to send a malicious packet through the firewall’s data plane, triggering a reboot. Affected customers will receive an insights notification and will be scheduled for an upgrade starting the weekend of January 3rd, 2025. In the meantime, we strongly recommend implementing the workaround detailed at https://security.paloaltonetworks.com/CVE-2024-3393 to mitigate the risk.”
Posted Dec 27, 2024 - 18:58 UTC
This incident affects: Prisma Access (MU/RN/SC) Data Plane - AMER (Argentina, Bolivia, Brazil Central, Brazil East, Brazil South, Canada Central, Canada East, Canada West, Chile, Colombia, Costa Rica, Ecuador, Guatemala, Mexico Central, Mexico West, Panama, Paraguay, Peru, South America West (Lima)**, US Central, US Central (Chicago)**, US Central West, US East, US North Central, US Northeast, US Northwest, US South, US Southeast, US Southeast (Miami)**, US Southwest, US West, US West Central, Uruguay, Venezuela), Prisma Access (MU/RN/SC) Data Plane - APAC (Australia East, Australia South, Australia Southeast, Australia West (Perth)**, Bangladesh, Cambodia, Hong Kong, India North, India South, India West, Indonesia, Japan Central, Japan South, Malaysia, Myanmar, New Zealand, New Zealand (Auckland)**, Pakistan South, Pakistan West, Pakistan West (II), Papua New Guinea, Philippines, Singapore, South Korea, Sri Lanka, Taiwan, Thailand, Vietnam), Prisma Access (MU/RN/SC) Data Plane - EMEA (Andorra, Austria, Bahrain, Belarus, Belgium, Bulgaria, Croatia, Czech Republic, Denmark, Egypt, Finland, France North, France South, Germany Central, Germany North, Germany South, Ghana, Greece, Hungary, Ireland, Israel, Italy, Jordan, Kazakhstan, Kenya, Kuwait, Latvia, Liechtenstein, Lithuania, Luxembourg, Moldova, Monaco, Netherlands Central, Netherlands South, Nigeria, Nigeria (Lagos)**, Norway, Poland, Portugal, Qatar, Romania, Russia Central, Russia Northwest, Saudi Arabia, Senegal, Slovakia, Slovenia, South Africa Central, South Africa West, Spain Central, Spain East, Sweden, Switzerland, Turkey, UK, Uganda, Ukraine, United Arab Emirates, Uzbekistan), Prisma Access FedRAMP (MU/RN/SC) Data Plane - APAC (Australia Southeast, India West, Japan Central, Japan South, Singapore, Taiwan, Indonesia), Prisma Access FedRAMP (MU/RN/SC) Data Plane - AMER (Brazil South, Canada East, US Central, US East, US Gov East, US Gov West, US Northwest, US South, US Southeast, US Southwest, US Central West), Prisma Access FedRAMP (MU/RN/SC) Data Plane - EMEA (Belgium, Finland, Germany Central, Netherlands Central, Switzerland, UK, Poland), and Prisma Access China (MU/RN/SC).