Unrated severityNVD Advisory· Published Mar 11, 2026· Updated Mar 11, 2026

Cortex XDR Agent: Local Administrator can disable the agent on macOS

CVE-2026-0230

Description

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on macOS allows a local administrator to disable the agent. This issue could be leveraged by malware to perform malicious activity without detection.

Affected products

Palo Alto Networks/Cortex XDR Agentv5
cpe:2.3:a:palo_alto_networks:cortex_xdr_agent:8.7-CE:*:*:*:*:macOS:*:*
Range: 8.7-CE
Paloaltonetworks/Cortex XDR agentllm-fuzzy

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.paloaltonetworks.com/CVE-2026-0230mitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000