Another week, another SSLVPN RCE - this time, it's CVE-2024-3400 in Palo Alto's GlobalProtect. But, we've seen no public analysis 🙁 so, allow us.. labs.watchtowr.com/palo-alto-putt…
"At this point, we're onto something - we have an arbitrary value in the shape of a filename being injected into a shell command. Are we on a path to receive angry tweets again?"
a good time to mention - we're hiring Vuln Researchers to join our watchTowr Labs team in SG and UK, to do 0day/Nday research that goes into our ASM product and sometimes on our blog. No shady vuln sales here. watchtowr.bamboohr.com/careers/42
@watchtowrcyber Love the PoC|GTFO motto <3 thanks for bringing topnotch research to the masses.
@watchtowrcyber What is 'detection artefact generator tool' and how is it different from PoC?