PT-2021-3523 · Palo Alto Networks · Cortex Xsoar
Published
2021-06-22
·
Updated
2022-07-14
·
CVE-2021-3044
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Cortex XSOAR versions 6.1.0 builds later than 1016923 through builds earlier than 1271064
Cortex XSOAR versions 6.2.0 builds earlier than 1271065
Description
The issue is related to an improper authorization vulnerability in the REST API of Cortex XSOAR, allowing a remote unauthenticated attacker with network access to perform unauthorized actions. This vulnerability can be exploited to gain unauthorized access to protected information.
Recommendations
For Cortex XSOAR versions 6.1.0 builds later than 1016923 through builds earlier than 1271064, upgrade to a version with build 1271064 or later to resolve the issue.
For Cortex XSOAR versions 6.2.0 builds earlier than 1271065, upgrade to a version with build 1271065 or later to resolve the issue.
As a temporary workaround, consider restricting access to the REST API until a patch is available.
Fix
Incorrect Authorization
Improper Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cortex Xsoar