{"id":7617,"date":"2024-10-10T18:05:09","date_gmt":"2024-10-11T00:05:09","guid":{"rendered":"https:\/\/beaconlab.mx\/?post_type=publicacion&#038;p=6287"},"modified":"2024-10-21T16:09:34","modified_gmt":"2024-10-21T21:09:34","slug":"2024-50-vulnerabilidad-critica-en-palo-alto-expedition","status":"publish","type":"publicacion","link":"https:\/\/beaconlab.us\/es\/publicacion\/2024-50-vulnerabilidad-critica-en-palo-alto-expedition\/","title":{"rendered":"Alerta 2024-50 Vulnerabilidad Cr\u00edtica en Palo Alto Expedition"},"content":{"rendered":"<p><span data-contrast=\"none\">Palo Alto Networks ha emitido una advertencia sobre varias vulnerabilidades cr\u00edticas en su herramienta <\/span><b><span data-contrast=\"none\">Expedition<\/span><\/b><span data-contrast=\"none\">, utilizada para migrar configuraciones de firewalls. Estas vulnerabilidades permiten a los atacantes tomar control de cuentas administrativas de los firewalls PAN-OS, accediendo a informaci\u00f3n sensible como nombres de usuario, contrase\u00f1as en texto claro, configuraciones de dispositivos y claves API.<\/span><span data-ccp-props=\"{&quot;335551550&quot;:6,&quot;335551620&quot;:6}\">\u00a0<\/span><\/p>\n<p><span class=\"TextRun SCXW106918058 BCX0\" lang=\"ES-MX\" xml:lang=\"ES-MX\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW106918058 BCX0\">Para mitigar estos riesgos, Palo Alto recomienda actualizar <\/span><\/span><span class=\"TextRun SCXW106918058 BCX0\" lang=\"ES-MX\" xml:lang=\"ES-MX\" data-contrast=\"none\"><span class=\"NormalTextRun SpellingErrorV2Themed SCXW106918058 BCX0\">Expedition<\/span><\/span><span class=\"TextRun SCXW106918058 BCX0\" lang=\"ES-MX\" xml:lang=\"ES-MX\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW106918058 BCX0\"> a la versi\u00f3n 1.2.96 o superior y rotar todas las credenciales afectadas, incluyendo nombres de usuario, contrase\u00f1as y claves API. Asimismo, se recomienda restringir el acceso a la red solo a usuarios y hosts autorizados\u200b.<\/span><\/span><span class=\"EOP SCXW106918058 BCX0\" data-ccp-props=\"{&quot;335551550&quot;:6,&quot;335551620&quot;:6}\">\u00a0<\/span><\/p>\n<p><span class=\"TextRun SCXW197596775 BCX0\" lang=\"ES-MX\" xml:lang=\"ES-MX\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW197596775 BCX0\">Para m\u00e1s informaci\u00f3n y parches, puedes acceder al <\/span><\/span><a class=\"Hyperlink SCXW197596775 BCX0\" href=\"https:\/\/security.paloaltonetworks.com\/\" target=\"_blank\" rel=\"noreferrer noopener\"><span class=\"TextRun Underlined SCXW197596775 BCX0\" lang=\"ES-MX\" xml:lang=\"ES-MX\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW197596775 BCX0\" data-ccp-charstyle=\"Hyperlink\">sitio oficial de Palo Alto Networks<\/span><\/span><\/a><span class=\"TextRun SCXW197596775 BCX0\" lang=\"ES-MX\" xml:lang=\"ES-MX\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW197596775 BCX0\">.<\/span><\/span><span class=\"EOP SCXW197596775 BCX0\" data-ccp-props=\"{&quot;335551550&quot;:6,&quot;335551620&quot;:6}\">\u00a0<\/span><\/p>\n","protected":false},"featured_media":5872,"template":"","class_list":["post-7617","publicacion","type-publicacion","status-publish","has-post-thumbnail","hentry"],"acf":{"activar_pdf_link":true,"pdf":7960,"numero_de_boletin":"","traffic_light_protocol":"Amber"},"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/publicacion\/7617","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/publicacion"}],"about":[{"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/types\/publicacion"}],"version-history":[{"count":1,"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/publicacion\/7617\/revisions"}],"predecessor-version":[{"id":7806,"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/publicacion\/7617\/revisions\/7806"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/media\/5872"}],"wp:attachment":[{"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/media?parent=7617"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}