Othmar Lechner

**Name of the Vulnerable Software and Affected Versions** Palo Alto Networks Cortex XSOAR CommonScripts Pack versions prior to 1.12.33 **Description** A command injection issue in Palo Alto Networks Cortex XSOAR CommonScripts Pack allows an unauthenticated attacker to execute arbitrary commands within the context of an integration container. This issue is related to the lack of data sanitization at the management level, which can be exploited by a remote attacker. **Recommendations** For versions prior to 1.12.33, update to version 1.12.33 or later to address the command injection issue in the CommonScripts Pack. As a temporary workaround, consider restricting access to the integration container to minimize the risk of exploitation.