PT-2025-21211 · Palo Alto Networks · Palo Alto Networks Cortex Xdr Broker Vm

Publicado

2025-05-14

·

Atualizado

2025-05-15

·

CVE-2025-0134

CVSS v2.0

6.5

Média

VetorAV:N/AC:L/Au:S/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions: Palo Alto Networks Cortex XDR Broker VM (affected versions not specified)
Description: A code injection issue allows an authenticated user to execute arbitrary code with root privileges on the host operating system running the Broker VM.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

BDU:2025-05726
CVE-2025-0134

Produtos afetados

Palo Alto Networks Cortex Xdr Broker Vm