Palo Alto Networks (PAN-OS, Prisma Access) Products December 2024 Security Update Advisory

Dec 30 2025

Overview

Palo Alto Networks(https://www.paloaltonetworks.com/) has released a security update that fixes vulnerabilities in products it has been made. users of affected products are advised to update to the latest version.

Affected Products

PAN-OS prior to version 11.2.3

PAN-OS versions prior to 11.1.5

PAN-OS version 10.2.8 and at least prior to 10.2.14

PAN-OS 10.1.14 and at least prior to 10.1.15

Prisma Access on PAN-OS 10.2.8 version or later and at least prior to 11.2.3

Resolved Vulnerabilities

Vulnerability in Prisma Access on PAN-OS, Prisma Access, where a malicious packet can be infiltrated through the data plane of the firewall, causing the firewall to reboot (CVE-2024-3393, CVSS 8.7) [1]

Vulnerability Patches

The December 26, 2024 update provided the following product-specific Vulnerability Patches

PAN-OS 11.2.3 or higher

PAN-OS 11.1.5 or higher

PAN-OS versions below 10.2.14 and 10.2.14 or higher

PAN-OS versions below 10.1.14 and 10.1.15 or higher

Prisma Access on PAN-OS versions below 10.2.8 and 11.2.3 or higher

Referenced Sites

[1] PAN-OS: Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet

https://security.paloaltonetworks.com/CVE-2024-3393

Palo Alto Networks (PAN-OS, Prisma Access) Products December 2024 Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Libxml2 Security Update Advisory (CVE-2024-40896)

IBM Product Security Update Advisory (CVE-2025-13915)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Libxml2 Security Update Advisory (CVE-2024-40896)

IBM Product Security Update Advisory (CVE-2025-13915)