Unrated severityNVD Advisory· Published Jan 12, 2022· Updated Sep 17, 2024
Cortex XDR Agent: An Uncontrolled Search Path Element Leads to Local Privilege Escalation (PE) Vulnerability
CVE-2022-0015
Description
A local privilege escalation (PE) vulnerability exists in the Palo Alto Networks Cortex XDR agent that enables an authenticated local user to execute programs with elevated privileges. This issue impacts: Cortex XDR agent 5.0 versions earlier than Cortex XDR agent 5.0.12; Cortex XDR agent 6.1 versions earlier than Cortex XDR agent 6.1.9.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<5.0.12, <6.1.9+ 1 more
- (no CPE)range: <5.0.12, <6.1.9
- (no CPE)range: 5.0
Patches
Vulnerability mechanics
References
1- security.paloaltonetworks.com/CVE-2022-0015mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.