Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-0001

An information exposure vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local system administrator to disclose the admin password for the agent in cleartext, which bad actors can then use to execute privileged cytool commands that disable or uninstall the agent.

Published

2023-02-08T18:15:11.523

Last Modified

2024-11-21T07:36:22.050

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.0 (MEDIUM)

Weaknesses

Type: Secondary
CWE-319
Type: Primary
CWE-319

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	paloaltonetworks	cortex_xdr_agent	< 7.5.101	Yes
Operating System	microsoft	windows	-	No

References

https://security.paloaltonetworks.com/CVE-2023-0001 Vendor Advisory ([email protected])
https://security.paloaltonetworks.com/CVE-2023-0001 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)