If your company is running a Palo Alto device and your network team didn’t patch this one right away you should schedule a meeting with them right now…
We want vendors to disclose vulns asap. We shouldn’t give them shit if they do. Vulns happen. They shouldn’t and especially not in security products like this but shit happens and I’d rather have them handle the situation professionally.
Of all the firewall solutions Palo Alto still has the least problems I believe.
I might be a fanboy but I’d never buy a Forti again because they have so many stupid vulns and quality problems compared to this one CVE in recent years.