CVE-2025-0132

Summary

A missing authentication vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an unauthenticated user to disable certain internal services on the Broker VM. 

The attacker must have network access to the Broker VM to exploit this issue.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksCortex XDR Broker VM26.0.0 < 26.0.119affected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

Workarounds

No known workarounds or mitigations exist for this issue.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References