CVE-2026-0270

Summary

A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an unauthenticated attacker on an adjacent network, with the ability to intercept and manipulate network response traffic via a man-in-the-middle (MITM) attack, to write arbitrary files to the host.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksCortex XSOAR8.13 < 8.13.0.11affected
Palo Alto NetworksCortex XSOAR8.12.0affected
Palo Alto NetworksCortex XSOAR8.11.0affected
Palo Alto NetworksCortex XSOAR8.10.0affected
Palo Alto NetworksCortex XSOAR6.14.0unaffected
Palo Alto NetworksCortex XSOAR6.13.0unaffected
Palo Alto NetworksCortex XSOAR6.12.0unaffected

Weaknesses

  • CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Workarounds

Palo Alto Networks is not aware of any malicious exploitation of these issues.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References