Background /What has happened?
A vulnerability (CVE-2021-3064) has been identified in the GlobalProtect component of certain versions of the Palo Alto firewall operating system. Exploitation of this vulnerability could allow an unauthenticated cyber actor to perform remote code execution. A cyber actor would then be able to install malware or otherwise control the affected device.
Mitigation / How do I stay secure?
Australian organisations who utilise a Palo Alto firewall, particularly those that utilise the GlobalProtect component, should review the Palo Alto Network security advisory for a list of specific vulnerable configurations and product versions. Affected organisations should then review the patch status of any Palo Alto firewalls and update to the latest available version.
