PT-2022-12959 · Microsoft+1 · Windows+1

Published

2022-05-11

Updated

2022-05-23

CVE-2022-0025

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Palo Alto Networks Cortex XDR agent versions prior to 7.7.0 with content update 500 or later on Windows Palo Alto Networks Cortex XDR agent version 7.7.0 without content update 500 or a later version on Windows

Description A local privilege escalation issue exists in the Palo Alto Networks Cortex XDR agent software on Windows, allowing an authenticated local user with file creation privilege in the Windows root directory to execute a program with elevated privileges.

Recommendations For Palo Alto Networks Cortex XDR agent versions prior to 7.7.0, update to version 7.7.0 and apply content update 500 or a later version. For Palo Alto Networks Cortex XDR agent version 7.7.0, apply content update 500 or a later version.

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2022-0025

Affected Products

Palo Alto Networks Cortex Xdr Agent

Windows

PT-2022-12959 · Microsoft+1 · Windows+1

CVE-2022-0025

Weakness Enumeration

Related Identifiers

Affected Products

References · 3