A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to execute privileged cytool commands that disable or uninstall the agent.
The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cortex_xdr_agent | Paloaltonetworks | 5.0 (including) | 5.0.12.22203 (excluding) |
Cortex_xdr_agent | Paloaltonetworks | 7.5 (including) | 7.5.101 (including) |