CVE-2022-0029
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
An improper link resolution vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local attacker to read files on the system with elevated privileges when generating a tech support file.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | Cortex XDR Agent | 7.7 < 7.7.3 | affected |
| Palo Alto Networks | Cortex XDR Agent | 7.5 CE < 7.5.101-CE | affected |
| Palo Alto Networks | Cortex XDR Agent | 5.0 < 5.0.12-hotfix update | affected |
| Palo Alto Networks | Cortex XDR Agent | 7.8 all | unaffected |
| Palo Alto Networks | Cortex XDR Agent | 7.7.3 < 7.7* | unaffected |
| Palo Alto Networks | Cortex XDR Agent | 7.5.101-CE < 7.5 CE* | unaffected |
| Palo Alto Networks | Cortex XDR Agent | 5.0.12-hotfix update < 5.0* | unaffected |
Weaknesses
- CWE-59: CWE-59 Improper Link Resolution Before File Access ('Link Following')
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.