Cybersecurity Criminal Justice 911 and Emergency Communications Centers

Cybersecurity Threat Advisory: Palo Alto Networks Firewall Vulnerability

Mike Beagles
Mike Beagles August 26, 2022 1 min read

A new critical security alert requires the mission-critical community’s immediate attention.

Advisory Overview

Cyberattackers are leveraging a vulnerability discovered in Palo Alto Networks’ firewall.

What Is the Threat?

Tracked as CVE-2022-0028, the vulnerability has a Common Vulnerability Scoring System (CVSS) base score of 8.6. (on a 10-point scale), which places it in the high-risk category. It enables cyberattackers to conduct reflected and amplified Transmission Control Protocol (TCP) denial-of-service (DoS) attacks.

PAN-OS is the software that runs all Palo Alto Networks' next-generation firewalls. Affected versions are identified in the following table: 

undefined

What Is the Risk?

This vulnerability does not give cyberattackers access to an internal network, but it can be used to halt business operations or obfuscate attackers who are targeting other organizations. 

What Are the Recommendations?

The vulnerability appears to impact only PAN-OS software, which Palo Alto Networks have patched. MCP advises that users apply these software updates as soon as possible.  

If you are looking for guidance, please reach out. MCP offers a comprehensive cybersecurity solutions suite for critical infrastructure organizations to help them determine their network, data, and application vulnerabilities. We can help you develop a complete cyberattack prevention strategy. Contact us today to learn more.

Don't forget to share this post!

Mike Beagles
Mike Beagles
Mike has specialized experience with supporting public safety agencies by providing technical expertise, strategic planning and general consulting for new and innovative mission critical technologies as well as legacy solutions. Throughout his long-standing career, he has worked as a technical service manager and network engineer for several public safety software companies, as well as an IT manager with a mid-tier public safety 911/ CAD/RMS/Mobile software provider. His expertise runs deep in team and project management for large and small projects, which he has done for more than 12 years.

Related posts

Cybersecurity

Cybersecurity Threat Advisory: China State-Sponsored Attacks on Networks and Devices

June 10, 2022
Mike Beagles
Cybersecurity Network Management IT and Network Support 911 and Emergency Communications Centers Healthcare

Cybersecurity Threat Advisory: Heightened Attack Activity Involving Trickbot Variant 'Bazar Backdoor'

October 2, 2020
Mike Beagles