PT-2023-1381 · Palo Alto Networks · Palo Alto Networks Cortex Xdr Agent

Robert Mccallum

Publicado

2023-02-08

Atualizado

2024-01-12

CVE-2023-0001

CVSS v3.1

6.7

Média

Vetor

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Palo Alto Networks Cortex XDR agent (affected versions not specified)

Description An information exposure issue in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local system administrator to disclose the admin password for the agent in cleartext. This could be used by bad actors to execute privileged cytool commands, potentially disabling or uninstalling the agent. The vulnerability is related to the storage of data in an open manner, which can allow an attacker to gain unauthorized access to protected information and execute arbitrary commands.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Cleartext Transmission of Sensitive Information

Cleartext Storage of Sensitive Information

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-319CWE-312

Identificadores relacionados

BDU:2023-00739

CVE-2023-0001

Produtos afetados

Palo Alto Networks Cortex Xdr Agent

PT-2023-1381 · Palo Alto Networks · Palo Alto Networks Cortex Xdr Agent

CVE-2023-0001

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8