{"cve":{"cve_id":"CVE-2024-8687","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00405,"epss_percentile":0.3219,"epss_as_of":"2026-06-23","description":"An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After the password or passcode is known, end users can uninstall, disable, or disconnect GlobalProtect even if the GlobalProtect app configuration would not normally permit them to do so.","published_at":"2024-09-11T16:40:21.066000Z","last_modified_at":null,"cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":6.9,"cvss_v4_vector":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/AU:N/R:A/V:D/RE:M/U:Amber","cvss_v4_severity":"MEDIUM","ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-497"],"nvd_references":["https://security.paloaltonetworks.com/CVE-2024-8687"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:24:52.437644Z"},"effective_severity":"MEDIUM","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":"4.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"AT","name":"Attack Requirements","value":"N","value_label":"None"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"VC","name":"Confidentiality (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VI","name":"Integrity (Vulnerable System)","value":"N","value_label":"None"},{"metric":"VA","name":"Availability (Vulnerable System)","value":"L","value_label":"Low"},{"metric":"SC","name":"Confidentiality (Subsequent System)","value":"N","value_label":"None"},{"metric":"SI","name":"Integrity (Subsequent System)","value":"N","value_label":"None"},{"metric":"SA","name":"Availability (Subsequent System)","value":"N","value_label":"None"},{"metric":"AU","name":"AU","value":"N","value_label":"None"},{"metric":"R","name":"R","value":"A","value_label":"Adjacent"},{"metric":"V","name":"V","value":"D","value_label":"D"},{"metric":"RE","name":"RE","value":"M","value_label":"M"},{"metric":"U","name":"U","value":"Amber","value_label":"Amber"}]},"affected":[{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"cloud-ngfw","product_name":"Cloud NGFW","version_start":"All","version_start_inclusive":true,"version_end":"All","version_end_inclusive":true,"cpe23_uri":"cve5:palo-alto-networks:cloud-ngfw:All:All"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"globalprotect-app","product_name":"globalprotect_app","version_start":"5.2.0","version_start_inclusive":true,"version_end":"5.2.13","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:globalprotect-app:5.2.0:5.2.13"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"globalprotect-app","product_name":"globalprotect_app","version_start":"6.0.0","version_start_inclusive":true,"version_end":"6.0.7","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:globalprotect-app:6.0.0:6.0.7"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"globalprotect-app","product_name":"globalprotect_app","version_start":"5.1.0","version_start_inclusive":true,"version_end":"5.1.12","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:globalprotect-app:5.1.0:5.1.12"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"globalprotect-app","product_name":"globalprotect_app","version_start":"6.2.0","version_start_inclusive":true,"version_end":"6.2.1","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:globalprotect-app:6.2.0:6.2.1"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"globalprotect-app","product_name":"globalprotect_app","version_start":"6.3.0","version_start_inclusive":true,"version_end":"6.3.0","version_end_inclusive":true,"cpe23_uri":"cve5:palo-alto-networks:globalprotect-app:6.3.0:6.3.0"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"globalprotect-app","product_name":"globalprotect_app","version_start":"6.1.0","version_start_inclusive":true,"version_end":"6.1.2","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:globalprotect-app:6.1.0:6.1.2"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"9.0.0","version_start_inclusive":true,"version_end":"9.0.17","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:pan-os:9.0.0:9.0.17"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"8.1.0","version_start_inclusive":true,"version_end":"8.1.25","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:pan-os:8.1.0:8.1.25"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"11.1.0","version_start_inclusive":true,"version_end":"11.1.0","version_end_inclusive":true,"cpe23_uri":"cve5:palo-alto-networks:pan-os:11.1.0:11.1.0"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"11.2.0","version_start_inclusive":true,"version_end":"11.2.0","version_end_inclusive":true,"cpe23_uri":"cve5:palo-alto-networks:pan-os:11.2.0:11.2.0"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"11.0.0","version_start_inclusive":true,"version_end":"11.0.1","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:pan-os:11.0.0:11.0.1"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"10.2.0","version_start_inclusive":true,"version_end":"10.2.4","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:pan-os:10.2.0:10.2.4"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"10.1.0","version_start_inclusive":true,"version_end":"10.1.9","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:pan-os:10.1.0:10.1.9"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"10.0.0","version_start_inclusive":true,"version_end":"10.0.12","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:pan-os:10.0.0:10.0.12"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"pan-os","product_name":"pan-os","version_start":"9.1.0","version_start_inclusive":true,"version_end":"9.1.16","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:pan-os:9.1.0:9.1.16"},{"vendor_slug":"palo-alto-networks","vendor_name":"Palo Alto Networks","product_slug":"prisma-access","product_name":"Prisma Access","version_start":"10.2.0","version_start_inclusive":true,"version_end":"10.2.9 on PAN-OS","version_end_inclusive":false,"cpe23_uri":"cve5:palo-alto-networks:prisma-access:10.2.0:10.2.9 on PAN-OS"}],"exploit_refs":[],"news":[],"references":[{"url":"https://security.paloaltonetworks.com/CVE-2024-8687","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2024-09-11T16:40:21.066000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:40:29.529971Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:40:29.529971Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:40:29.529971Z","label":"CVSS score revised","source":"cvelistv5"}]}