CVE-2022-0015

Summary

A local privilege escalation (PE) vulnerability exists in the Palo Alto Networks Cortex XDR agent that enables an authenticated local user to execute programs with elevated privileges. This issue impacts: Cortex XDR agent 5.0 versions earlier than Cortex XDR agent 5.0.12; Cortex XDR agent 6.1 versions earlier than Cortex XDR agent 6.1.9.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksCortex XDR Agent7.2.*unaffected
Palo Alto NetworksCortex XDR Agent7.3.*unaffected
Palo Alto NetworksCortex XDR Agent7.4.*unaffected
Palo Alto NetworksCortex XDR Agent7.5.*unaffected
Palo Alto NetworksCortex XDR Agent7.6.*unaffected
Palo Alto NetworksCortex XDR Agent5.0 < 5.0.12affected
Palo Alto NetworksCortex XDR Agent6.1 < 6.1.9affected

Weaknesses

  • CWE-427: CWE-427 Uncontrolled Search Path Element

Workarounds

There are no known workarounds for this issue.

ADP Enrichment

CVE Program Container

Additional References

References