Description
An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked.
Scores
CVSS v4
6.8
EPSS
0.0001
EPSS Percentile
2.1%
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:C/RE:M/U:Amber
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-347
Status
published
Products (5)
Palo Alto Networks/Cortex XDR Agent
7.9-CE - 7.9.102-CE
Palo Alto Networks/Cortex XDR Agent
8.2 - 8.2.2
Palo Alto Networks/Cortex XDR Agent
8.3
Palo Alto Networks/Cortex XDR Agent
8.3-CE
Palo Alto Networks/Cortex XDR Agent
8.4
Published
Jul 10, 2024
Tracked Since
Feb 18, 2026