CVE-2024-5910

Palo Alto Networks Expedition contains a missing authentication vulnerability that allows an attacker with network access to takeover an Expedition admin account and potentially access configuration secrets, credentials, and other data. Vendor/Product: Palo Alto Networks Expedition. Added to CISA KEV 2024-11-07; required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.