CVE-2021-3049

Summary

An improper authorization vulnerability in the Palo Alto Networks Cortex XSOAR server enables an authenticated network-based attacker with investigation read permissions to download files from incident investigations of which they are aware but are not a part of. This issue impacts: All Cortex XSOAR 5.5.0 builds; Cortex XSOAR 6.1.0 builds earlier than 12099345. This issue does not impact Cortex XSOAR 6.2.0 versions.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksCortex XSOAR5.5.0 allaffected
Palo Alto NetworksCortex XSOAR6.2.0 allunaffected
Palo Alto NetworksCortex XSOAR6.1.0 < 12099345affected

Weaknesses

  • CWE-285: CWE-285 Improper Authorization

Workarounds

There are no known workarounds for this issue.

ADP Enrichment

CVE Program Container

Additional References

References