VYPR

Cortex XDR agent

by Paloaltonetworks

CVEs (25)

  • CVE-2022-0015HigJan 12, 2022
    risk 0.51cvss 7.8epss 0.00

    A local privilege escalation (PE) vulnerability exists in the Palo Alto Networks Cortex XDR agent that enables an authenticated local user to execute programs with elevated privileges. This issue impacts: Cortex XDR agent 5.0 versions earlier than Cortex XDR agent 5.0.12; Cortex…

  • CVE-2021-3042HigJul 15, 2021
    risk 0.51cvss 7.8epss 0.00

    A local privilege escalation (PE) vulnerability exists in the Palo Alto Networks Cortex XDR agent on Windows platforms that enables an authenticated local Windows user to execute programs with SYSTEM privileges. Exploiting this vulnerability requires the user to have file…

  • CVE-2021-3041HigJun 10, 2021
    risk 0.51cvss 7.8epss 0.00

    A local privilege escalation vulnerability exists in the Palo Alto Networks Cortex XDR agent on Windows platforms that enables an authenticated local Windows user to execute programs with SYSTEM privileges. This requires the user to have the privilege to create files in the…

  • CVE-2020-2049HigDec 9, 2020
    risk 0.51cvss 7.8epss 0.00

    A local privilege escalation vulnerability exists in Palo Alto Networks Cortex XDR Agent on the Windows platform that allows an authenticated local Windows user to execute programs with SYSTEM privileges. This requires the user to have the privilege to create files in the…

  • CVE-2020-1991HigApr 8, 2020
    risk 0.51cvss 7.8epss 0.00

    An insecure temporary file vulnerability in Palo Alto Networks Traps allows a local authenticated Windows user to escalate privileges or overwrite system files. This issue affects Palo Alto Networks Traps 5.0 versions before 5.0.8; 6.1 versions before 6.1.4 on Windows. This…

  • CVE-2025-0121MedApr 11, 2025
    risk 0.44cvss epss 0.00

    A null pointer dereference vulnerability in the Palo Alto Networks Cortex® XDR agent on Windows devices allows a low-privileged local Windows user to crash the agent. Additionally, malware can use this vulnerability to perform malicious activity without Cortex XDR being able to…

  • CVE-2025-0112MedFeb 20, 2025
    risk 0.44cvss epss 0.00

    A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This vulnerability can also be leveraged by malware to disable the Cortex XDR agent and then perform…

  • CVE-2024-5912MedJul 10, 2024
    risk 0.44cvss epss 0.00

    An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being…

  • CVE-2022-0026MedMay 11, 2022
    risk 0.44cvss 6.7epss 0.00

    A local privilege escalation (PE) vulnerability exists in Palo Alto Networks Cortex XDR agent software on Windows that enables an authenticated local user with file creation privilege in the Windows root directory (such as C:\) to execute a program with elevated privileges. This…

  • CVE-2022-0025MedMay 11, 2022
    risk 0.44cvss 6.7epss 0.00

    A local privilege escalation (PE) vulnerability exists in Palo Alto Networks Cortex XDR agent software on Windows that enables an authenticated local user with file creation privilege in the Windows root directory (such as C:\) to execute a program with elevated privileges. This…

  • CVE-2022-0014MedJan 12, 2022
    risk 0.44cvss 6.7epss 0.00

    An untrusted search path vulnerability exists in the Palo Alto Networks Cortex XDR agent that enables a local attacker with file creation privilege in the Windows root directory (such as C:\) to store a program that can then be unintentionally executed by another local user when…

  • CVE-2022-0012MedJan 12, 2022
    risk 0.40cvss 6.1epss 0.00

    An improper link resolution before file access vulnerability exists in the Palo Alto Networks Cortex XDR agent on Windows platforms that enables a local user to delete arbitrary system files and impact the system integrity or cause a denial of service condition. This issue…

  • CVE-2023-0001MedFeb 8, 2023
    risk 0.39cvss 6.0epss 0.00

    An information exposure vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local system administrator to disclose the admin password for the agent in cleartext, which bad actors can then use to execute privileged cytool commands that disable or…

  • CVE-2023-3280MedSep 13, 2023
    risk 0.36cvss 5.5epss 0.00

    A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to disable the agent.

  • CVE-2023-0002MedFeb 8, 2023
    risk 0.36cvss 5.5epss 0.00

    A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to execute privileged cytool commands that disable or uninstall the agent.

  • CVE-2022-0029MedSep 14, 2022
    risk 0.36cvss 5.5epss 0.00

    An improper link resolution vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local attacker to read files on the system with elevated privileges when generating a tech support file.

  • CVE-2020-2020MedDec 9, 2020
    risk 0.36cvss 5.5epss 0.00

    An improper handling of exceptional conditions vulnerability in Cortex XDR Agent allows a local authenticated Windows user to create files in the software's internal program directory that prevents the Cortex XDR Agent from starting. The exceptional condition is persistent and…

  • CVE-2022-0013MedJan 12, 2022
    risk 0.33cvss 5.0epss 0.00

    A file information exposure vulnerability exists in the Palo Alto Networks Cortex XDR agent that enables a local attacker to read the contents of arbitrary files on the system with elevated privileges when generating a support file. This issue impacts: Cortex XDR agent 5.0…

  • CVE-2026-0232MedApr 13, 2026
    risk 0.26cvss epss 0.00

    A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows allows a local Windows administrator to disable the agent. This issue may be leveraged by malware to perform malicious activity without detection.

  • CVE-2026-0230Mar 11, 2026
    risk 0.00cvss epss 0.00

    A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on macOS allows a local administrator to disable the agent. This issue could be leveraged by malware to perform malicious activity without detection.

Page 1 of 2