Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-vh98-48jw-fxwj

Опубликовано: 12 июн. 2024
Источник: github
Github: Не прошло ревью
CVSS4: 5.2
CVSS3: 7

Описание

A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices enables a local user to execute programs with elevated privileges. However, execution does require the local user to successfully exploit a race condition, which makes this vulnerability difficult to exploit.

A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices enables a local user to execute programs with elevated privileges. However, execution does require the local user to successfully exploit a race condition, which makes this vulnerability difficult to exploit.

Ссылки

EPSS

Процентиль: 30%
0.00111
Низкий

5.2 Medium

CVSS4

7 High

CVSS3

CVE ID

CVE-2024-5907

Дефекты

CWE-269

Связанные уязвимости

nvd логотип

CVE-2024-5907

CVSS3: 7
nvd
больше 1 года назад

A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices enables a local user to execute programs with elevated privileges. However, execution does require the local user to successfully exploit a race condition, which makes this vulnerability difficult to exploit.

fstec логотип

BDU:2024-04698

CVSS3: 7
fstec
больше 1 года назад

Уязвимость средства анализа сетевого трафика, сетевого обнаружения и реагирования Palo Alto Networks Cortex XDR Agent, связанная с небезопасным управлением привилегиями, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 30%
0.00111
Низкий

5.2 Medium

CVSS4

7 High

CVSS3

CVE ID

CVE-2024-5907

Дефекты

CWE-269