Lucene search
K

The vulnerability of the virtual machine on Palo Alto Networks’ Cortex XDR Broker VM, a cloud-based security platform, stems from insufficient validation of input data. This allows attackers to execute arbitrary code.

🗓️ 19 May 2026 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 2 Views

Cortex XDR Broker VM vulnerability lets arbitrary code execution from poorly validated certificate and key data.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-0238
13 May 202618:22
attackerkb
CNNVD
Palo Alto Networks Broker VM 输入验证错误漏洞
13 May 202600:00
cnnvd
CVE
CVE-2026-0238
13 May 202618:22
cve
Cvelist
CVE-2026-0238 Broker VM: Improper Input Validation in Broker VM Certificate and Key Fields
13 May 202618:22
cvelist
EUVD
EUVD-2026-30090
13 May 202621:32
euvd
NVD
CVE-2026-0238
13 May 202619:16
nvd
Positive Technologies
PT-2026-40749
13 May 202600:00
ptsecurity
RedhatCVE
CVE-2026-0238
5 Jun 202619:44
redhatcve
Vulnrichment
CVE-2026-0238 Broker VM: Improper Input Validation in Broker VM Certificate and Key Fields
13 May 202618:22
vulnrichment
Vulners
Node
palo_alto_networksbroker_vmRange30.0.030.0.24

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

19 May 2026 00:00Current
6Medium risk
Vulners AI Score6
CVSS 21.7
CVSS 33.8
EPSS0.00105
2