CVE-2024-3400 PoC — PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect

Source

Associated Vulnerability

Description

CS50 Cybersecurity final project — Palo Alto OAuth token breach (CVE-2024-3400)

Readme

# CS50 Cybersecurity Final Project
**Title:** The Salesloft OAuth Breach & CVE-2024-3400 (Palo Alto impact)

**Author:** Yafiya Darwesh (GitHub: Yafiah-Darwesh)  
**YouTube video:**  https://youtu.be/CxQNj9qWoZ0?si=cHCwuTIY26YHJ8aw 
**CVE:** CVE-2024-3400

## Files
- `presentation.pdf` — slides
- `script.txt` — speaker notes

## Summary
Short: Misconfigured OAuth token validation allowed token forging and unauthorized access across OAuth integrations (impacting Palo Alto, Cloudflare, Zscaler, etc).

(Contact: rosegoldmidnight78@gmail.com)

File Snapshot

 [4.0K]  /data/pocs/3f46598e1917af7aa8d706e7290f819f647d751d
└── [ 550]  README.md

1 directory, 1 file

Remarks