CVSS4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/SC:N/VI:H/SI:N/VA:N/SA:L/AU:N/U:Amber/R:U/V:D/RE:M
AI Score
Confidence
Low
EPSS
Percentile
9.6%
A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows administrator privileges to disable the agent. This issue may be leveraged by malware to disable the Cortex XDR agent and then to perform malicious activity.
Work around:
No work around available.