CVE-2024-5907
5.2
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:H/SI:H/SA:H/AU:N/R:U/V:D/RE:M/U:Amber
Summary
A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices enables a local user to execute programs with elevated privileges. However, execution does require the local user to successfully exploit a race condition, which makes this vulnerability difficult to exploit.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | Cortex XDR Agent | 7.9-CE < 7.9.102-CE | affected |
| Palo Alto Networks | Cortex XDR Agent | 8.1.0 | affected |
| Palo Alto Networks | Cortex XDR Agent | 8.2.0 < 8.2.3 | affected |
| Palo Alto Networks | Cortex XDR Agent | 8.3.0 < 8.3.1 | affected |
| Palo Alto Networks | Cortex XDR Agent | 8.4.0 | unaffected |
Weaknesses
- CWE-269: CWE-269 Improper Privilege Management
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.