CVE-2024-5912
6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:C/RE:M/U:Amber
Summary
An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | Cortex XDR Agent | 8.4 | unaffected |
| Palo Alto Networks | Cortex XDR Agent | 8.3-CE | unaffected |
| Palo Alto Networks | Cortex XDR Agent | 8.3 | unaffected |
| Palo Alto Networks | Cortex XDR Agent | 7.9-CE < 7.9.102-CE | affected |
| Palo Alto Networks | Cortex XDR Agent | 8.2 < 8.2.2 | affected |
Weaknesses
- CWE-347: CWE-347 Improper Verification of Cryptographic Signature
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.