exploitDog

GHSA-9wj2-6hv9-fwwp

Опубликовано: 20 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 6.8

Описание

A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This vulnerability can also be leveraged by malware to disable the Cortex XDR agent and then perform malicious activity.

A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This vulnerability can also be leveraged by malware to disable the Cortex XDR agent and then perform malicious activity.

Ссылки

EPSS

Процентиль: 4%

0.00023

Низкий

6.8 Medium

CVSS4

CVE ID

Дефекты

CWE-754

Связанные уязвимости

CVE-2025-0112

nvd

6 месяцев назад

A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This vulnerability can also be leveraged by malware to disable the Cortex XDR agent and then perform malicious activity.

BDU:2025-08773

CVSS3: 5.5

fstec

7 месяцев назад

Уязвимость средства анализа сетевого трафика, сетевого обнаружения и реагирования Palo Alto Networks Cortex XDR Agent, связанная с недостаточной проверкой необычных или исключительных состояний, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 4%

0.00023

Низкий

6.8 Medium

CVSS4

CVE ID

Дефекты

CWE-754