An improper link resolution before file access vulnerability exists in the Palo Alto Networks Cortex XDR agent on Windows platforms that enables a local user to delete arbitrary system files and impact the system integrity or cause a denial of service condition. This issue impacts: Cortex XDR agent 5.0 versions earlier than Cortex XDR agent 5.0.12; Cortex XDR agent 6.1 versions earlier than Cortex XDR agent 6.1.9; Cortex XDR agent 7.2 versions earlier than Cortex XDR agent 7.2.4; Cortex XDR agent 7.3 versions earlier than Cortex XDR agent 7.3.2.
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cortex_xdr_agent | Paloaltonetworks | 5.0 (including) | 5.0.12 (excluding) |
Cortex_xdr_agent | Paloaltonetworks | 6.1 (including) | 6.1.9 (excluding) |
Cortex_xdr_agent | Paloaltonetworks | 7.2 (including) | 7.2.4 (excluding) |
Cortex_xdr_agent | Paloaltonetworks | 7.3 (including) | 7.3.2 (excluding) |