CVE Vulnerabilities

CVE-2023-0002

Protection Mechanism Failure

Published: Feb 08, 2023 | Modified: Nov 21, 2024
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to execute privileged cytool commands that disable or uninstall the agent.

Weakness

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

Affected Software

Name Vendor Start Version End Version
Cortex_xdr_agent Paloaltonetworks 5.0 (including) 5.0.12.22203 (excluding)
Cortex_xdr_agent Paloaltonetworks 7.5 (including) 7.5.101 (including)

References