A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system allows a local attacker with shell access to the engine to execute programs with elevated privileges.
The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cortex_xsoar | Paloaltonetworks | 6.5.0 | 6.5.0 |
Cortex_xsoar | Paloaltonetworks | 6.5.0 | 6.5.0 |
Cortex_xsoar | Paloaltonetworks | 6.5.0 | 6.5.0 |
Cortex_xsoar | Paloaltonetworks | 6.6.0 | 6.6.0 |
Cortex_xsoar | Paloaltonetworks | 6.6.0 | 6.6.0 |
Cortex_xsoar | Paloaltonetworks | 6.6.0 | 6.6.0 |
Cortex_xsoar | Paloaltonetworks | 6.6.0 | 6.6.0 |
Cortex_xsoar | Paloaltonetworks | 6.8.0 | 6.8.0 |