CVE-2024-5905

Summary

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local low privileged Windows user to disrupt some functionality of the agent. However, they are not able to disrupt Cortex XDR agent protection mechanisms using this vulnerability.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksCortex XDR Agent7.9-CE < 7.9.102-CEaffected
Palo Alto NetworksCortex XDR Agent8.1.0 < 8.1.2affected
Palo Alto NetworksCortex XDR Agent8.2.0 < 8.2.1affected
Palo Alto NetworksCortex XDR Agent8.3.0unaffected
Palo Alto NetworksCortex XDR Agent8.4.0unaffected

Weaknesses

  • CWE-346: CWE-346 Origin Validation Error

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References