PT-2021-18758 · Palo Alto Networks · Cortex Xsoar

Published

2021-09-08

Updated

2022-07-25

CVE-2021-3049

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Palo Alto Networks Cortex XSOAR versions 5.5.0 Palo Alto Networks Cortex XSOAR 6.1.0 builds earlier than 12099345

Description An improper authorization issue in the Palo Alto Networks Cortex XSOAR server allows an authenticated network-based attacker with investigation read permissions to download files from incident investigations they are aware of but not part of.

Recommendations For Cortex XSOAR versions 5.5.0, update to a version that is not affected by this issue. For Cortex XSOAR 6.1.0 builds earlier than 12099345, update to a build 12099345 or later. At the moment, there is no information about additional mitigation measures for this vulnerability.

Fix

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-285

Related Identifiers

CVE-2021-3049

Affected Products

Cortex Xsoar

PT-2021-18758 · Palo Alto Networks · Cortex Xsoar

CVE-2021-3049

Weakness Enumeration

Related Identifiers

Affected Products

References · 5