1. CVSS Triage Logic Broke Down: How Two 'Manageable' Palo Alto Vulnerabilities Enabled Root Access to 13,000 Devices
In November 2024, during an operation tracked as Operation Lunar Peek, threat actors chained two Palo Alto Networks vulnerabilities to compromise more than 13,000 exposed management interfaces, gaining unauthenticated remote administrative access that escalated to root-level control. The critical failure point was not ...