CVSS4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/SC:N/VI:H/SI:N/VA:N/SA:N/AU:N/U:Amber/R:U/V:C/RE:M
AI Score
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent’s executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked.
[
{
"vendor": "Palo Alto Networks",
"product": "Cortex XDR Agent",
"versions": [
{
"status": "unaffected",
"version": "8.4",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "8.3-CE",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "8.3",
"versionType": "custom"
},
{
"status": "affected",
"changes": [
{
"at": "7.9.102-CE",
"status": "unaffected"
}
],
"version": "7.9-CE",
"lessThan": "7.9.102-CE",
"versionType": "custom"
},
{
"status": "affected",
"changes": [
{
"at": "8.2.2",
"status": "unaffected"
}
],
"version": "8.2",
"lessThan": "8.2.2",
"versionType": "custom"
}
],
"defaultStatus": "unaffected"
}
]
CVSS4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/SC:N/VI:H/SI:N/VA:N/SA:N/AU:N/U:Amber/R:U/V:C/RE:M
AI Score
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial