CVE-2025-0134

🗓️ 14 May 2025 18:07:54Reported by palo_altoType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 34 Views

Code injection vulnerability in Cortex XDR Broker VM allows authenticated users to execute arbitrary code.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2025-0134	14 May 202519:15	–	attackerkb
BDU FSTEC	The vulnerability of the Broker VM platform’s security layer, Cortex XDR, arises from improper code generation management, allowing attackers to execute arbitrary code.	21 May 202500:00	–	bdu_fstec
Circl	CVE-2025-0134	14 May 202514:00	–	circl
CNNVD	Palo Alto Networks Cortex XDR Broker VM 代码注入漏洞	14 May 202500:00	–	cnnvd
Cvelist	CVE-2025-0134 Cortex XDR Broker VM: Authenticated Code Injection Vulnerability in Broker VM	14 May 202518:07	–	cvelist
EUVD	EUVD-2025-14902	3 Oct 202520:07	–	euvd
NVD	CVE-2025-0134	14 May 202519:15	–	nvd
Positive Technologies	PT-2025-21211 · Palo Alto Networks · Palo Alto Networks Cortex Xdr Broker Vm	14 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-0134	16 May 202519:07	–	redhatcve
Vulnrichment	CVE-2025-0134 Cortex XDR Broker VM: Authenticated Code Injection Vulnerability in Broker VM	14 May 202518:07	–	vulnrichment

Vulners

Node

paloaltonetworks cortex_xdr_broker_vmRange26.0.0–26.0.119

[
  {
    "cpes": [
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:26.100.10:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:26.100.3:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:26.0.119:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:26.0.116:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:25.100.4:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:25.0.44:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:24.100.4:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:24.4.7:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:24.2.8:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:24.5.1:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:23.100.2:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:23.0.35:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:23.0.33:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:22.0.35:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:22.0.32:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:21.5.4:*:*:*:*:*:*:*",
      "cpe:2.3:a:paloaltonetworks:cortex_xdr_broker_vm:20.9.1:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Cortex XDR Broker VM",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "changes": [
          {
            "at": "26.0.119",
            "status": "unaffected"
          }
        ],
        "lessThan": "26.0.119",
        "status": "affected",
        "version": "26.0.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
security	www.security.paloaltonetworks.com/CVE-2025-0134

17 Jun 2026 08:25Current

7.5High risk

Vulners AI Score7.5

CVSS 46.5

EPSS0.00385

SSVC

CWE-94