{"id":1545847,"date":"2025-02-19T05:48:28","date_gmt":"2025-02-19T07:48:28","guid":{"rendered":"https:\/\/teknomers.com\/fr\/cisa-ajoute-palo-alto-networks-et-sonicwall-flaws-to-exploited-vulnerabilities-list\/"},"modified":"2025-02-19T05:48:33","modified_gmt":"2025-02-19T07:48:33","slug":"cisa-ajoute-palo-alto-networks-et-sonicwall-flaws-to-exploited-vulnerabilities-list","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/cisa-ajoute-palo-alto-networks-et-sonicwall-flaws-to-exploited-vulnerabilities-list\/","title":{"rendered":"CISA ajoute Palo Alto Networks et Sonicwall Flaws to Exploited Vulnerabilities List"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">19 f\u00e9vrier 2025<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">Ravie Lakshmanan<\/span><\/span><span class=\"p-tags\">Intelligence \/ vuln\u00e9rabilit\u00e9 des menaces<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2025\/02\/CISA-ajoute-Palo-Alto-Networks-et-Sonicwall-Flaws-to-Exploited.png\" style=\"clear: left; display: block; float: left;  text-align: center;\"><\/a><\/div>\n<p>L&#8217;Agence am\u00e9ricaine de s\u00e9curit\u00e9 de la cybers\u00e9curit\u00e9 et des infrastructures (CISA) <a rel=\"noopener nofollow\" href=\"https:\/\/www.cisa.gov\/news-events\/alerts\/2025\/02\/18\/cisa-adds-two-known-exploited-vulnerabilities-catalog\" target=\"_blank\">ajout\u00e9<\/a> Deux d\u00e9fauts de s\u00e9curit\u00e9 ayant un impact sur les r\u00e9seaux Palo Alto Pan-OS et Sonicwall Sonicos SSLVPN \u00e0 ses vuln\u00e9rabilit\u00e9s exploit\u00e9es connues (<a rel=\"noopener nofollow\" href=\"https:\/\/www.cisa.gov\/known-exploited-vulnerabilities-catalog\" target=\"_blank\">Kev<\/a>) Catalogue, bas\u00e9 sur des preuves d&#8217;exploitation active.<\/p>\n<p>Les d\u00e9fauts sont r\u00e9pertori\u00e9s ci-dessous &#8211;<\/p>\n<ul>\n<li><strong>CVE-2025-0108<\/strong> (Score CVSS: 7.8) &#8211; Une vuln\u00e9rabilit\u00e9 de contournement d&#8217;authentification dans l&#8217;interface Web PALO Networks Pan-OS Management qui permet \u00e0 un attaquant non authentifi\u00e9 avec un acc\u00e8s r\u00e9seau \u00e0 l&#8217;interface Web de gestion pour contourner l&#8217;authentification normalement requise et invoquer certains scripts PHP<\/li>\n<li><strong>CVE-2024-53704<\/strong> (Score CVSS: 8.2) &#8211; Une vuln\u00e9rabilit\u00e9 d&#8217;authentification inappropri\u00e9e dans le m\u00e9canisme d&#8217;authentification SSLVPN qui permet \u00e0 un attaquant distant de contourner l&#8217;authentification<\/li>\n<\/ul>\n<div class=\"dog_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener sponsored\" href=\"https:\/\/thehackernews.uk\/saas-security-v1-d\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"Cybers\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2025\/02\/1738390842_400_Meta-confirme-lattaque-de-logiciels-spyware-zero-clique.png\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Palo Alto Networks a depuis confirm\u00e9 \u00e0 The Hacker News qu&#8217;il a observ\u00e9 des tentatives d&#8217;exploitation actives contre le CVE-2025-0108, la soci\u00e9t\u00e9 notant qu&#8217;elle pourrait \u00eatre encha\u00een\u00e9e avec d&#8217;autres vuln\u00e9rabilit\u00e9s comme le CVE-2024-9474 pour permettre un acc\u00e8s non autoris\u00e9 \u00e0 non lus et non garanti et non garantis pare-feu.<\/p>\n<p>&#8220;Palo Alto Networks a observ\u00e9 des tentatives d&#8217;exploitation <a rel=\"nofollow noopener\" href=\"https:\/\/security.paloaltonetworks.com\/CVE-2024-9474\" target=\"_blank\">CVE-2024-9474<\/a> et <a rel=\"nofollow noopener\" href=\"https:\/\/security.paloaltonetworks.com\/CVE-2025-0111\" target=\"_blank\">CVE-2025-0111<\/a> Sur les interfaces de gestion Web Pan-OS non corrig\u00e9es et non garanties, &#8221; <a rel=\"nofollow noopener\" href=\"https:\/\/security.paloaltonetworks.com\/CVE-2025-0108\" target=\"_blank\">dit<\/a> dans un avis mis \u00e0 jour.<\/p>\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2025\/02\/1739951308_560_CISA-ajoute-Palo-Alto-Networks-et-Sonicwall-Flaws-to-Exploited.png\" style=\"clear: left; display: block; float: left;  text-align: center;\"><img decoding=\"async\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2025\/02\/1739951308_560_CISA-ajoute-Palo-Alto-Networks-et-Sonicwall-Flaws-to-Exploited.png\" alt=\"\" border=\"0\" data-original-height=\"1636\" data-original-width=\"3066\"\/><\/a><\/div>\n<p>Greynoise de renseignement des menaces <a rel=\"noopener nofollow\" href=\"https:\/\/www.greynoise.io\/blog\/greynoise-observes-active-exploitation-of-pan-os-authentication-bypass-vulnerability-cve-2025-0108#GreyNoise\" target=\"_blank\">dit<\/a> Jusqu&#8217;\u00e0 25 adresses IP malveillantes exploitent activement CVE-2025-0108, le volume d&#8217;activit\u00e9 de l&#8217;attaquant augmentant 10 fois depuis sa d\u00e9tection il y a pr\u00e8s d&#8217;une semaine. Les trois principales sources de trafic d&#8217;attaque sont les \u00c9tats-Unis, l&#8217;Allemagne et les Pays-Bas.<\/p>\n<p>En ce qui concerne le CVE-2024-53704, la soci\u00e9t\u00e9 de cybers\u00e9curit\u00e9 Arctic Wolf a r\u00e9v\u00e9l\u00e9 que les acteurs de la menace armement le d\u00e9faut peu de temps apr\u00e8s qu&#8217;une preuve de concept (POC) a \u00e9t\u00e9 mise \u00e0 disposition par Mgr Fox.<\/p>\n<p>\u00c0 la lumi\u00e8re de l&#8217;exploitation active, les agences f\u00e9d\u00e9rales de direction civile (FCEB) sont tenues de corriger les vuln\u00e9rabilit\u00e9s identifi\u00e9es d&#8217;ici le 11 mars 2025, afin de s\u00e9curiser leurs r\u00e9seaux.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant? Suivez-nous <a rel=\"noopener nofollow\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Gazouillement <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"noopener nofollow\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">Liendin<\/a> Pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2025\/02\/cisa-adds-palo-alto-networks-and.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80219 f\u00e9vrier 2025\ue804Ravie LakshmananIntelligence \/ vuln\u00e9rabilit\u00e9 des menaces L&#8217;Agence am\u00e9ricaine de s\u00e9curit\u00e9 de la cybers\u00e9curit\u00e9 et des infrastructures (CISA) ajout\u00e9 Deux d\u00e9fauts de s\u00e9curit\u00e9 ayant un impact sur les r\u00e9seaux Palo Alto Pan-OS et Sonicwall Sonicos SSLVPN \u00e0 ses vuln\u00e9rabilit\u00e9s exploit\u00e9es connues (Kev) Catalogue, bas\u00e9 sur des preuves d&#8217;exploitation active. Les d\u00e9fauts sont r\u00e9pertori\u00e9s ci-dessous [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1545848,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[274266,274265,12361,79745,4805,4168,79002,274264,4161,274263,6124,138850,184006,33097,274267,4160,79746,79744,238617,246491,4172,39225,79016,4166,4164,175857],"class_list":["post-1545847","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-actualites-de-piratage","tag-actualites-des-pirates","tag-ajoute","tag-alto","tag-cisa","tag-comment-pirater","tag-cyber-security-news","tag-cyber-security-news-aujourdhui","tag-cyber-mises-a-jour","tag-cyber-nouvelles","tag-cyberattaques","tag-exploited","tag-flaws","tag-list","tag-malware-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-networks","tag-palo","tag-securite-de-linformation","tag-securite-du-reseau","tag-securite-informatique","tag-sonicwall","tag-the-hacker-news","tag-violation-de-donnees","tag-vulnerabilite-logicielle","tag-vulnerabilities"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1545847","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=1545847"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1545847\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/1545848"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=1545847"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=1545847"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=1545847"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}