CVE-2026-0270
4.8
CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:Y/R:U/V:D/RE:M/U:Amber
Summary
A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an unauthenticated attacker on an adjacent network, with the ability to intercept and manipulate network response traffic via a man-in-the-middle (MITM) attack, to write arbitrary files to the host.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | Cortex XSOAR | 8.13 < 8.13.0.11 | affected |
| Palo Alto Networks | Cortex XSOAR | 8.12.0 | affected |
| Palo Alto Networks | Cortex XSOAR | 8.11.0 | affected |
| Palo Alto Networks | Cortex XSOAR | 8.10.0 | affected |
| Palo Alto Networks | Cortex XSOAR | 6.14.0 | unaffected |
| Palo Alto Networks | Cortex XSOAR | 6.13.0 | unaffected |
| Palo Alto Networks | Cortex XSOAR | 6.12.0 | unaffected |
Weaknesses
- CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Workarounds
Palo Alto Networks is not aware of any malicious exploitation of these issues.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.