CVE-2024-3400: Received A Message About an Affected Palo Alto GlobalProtect Gateway

Hello,

I received and email from an insurance company stating that their “non-intrusive vulnerability scan has detected the following domain and IP is running a Palo Alto GlobalProtect Gateway, and may be affected by CVE-2024-3400”

Has Cloudflare patched this?

Thank you in advance!

What IP address is this and why do they believe it is a Cloudflare managed/owned device?

The IP address that the insurance company mentioned in the notification was 172.64.80.1.

That is a Cloudflare IP address but Cloudflare provides services to millions of websites, it doesn’t manage them for them. If your insurance company believes that is an asset of yours you would need to work with them to determine why.

2 Likes

Gotcha… Thank you that bit of info!

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.