PT-2025-16002 · Palo Alto Networks · Palo Alto Networks Cortex Xdr Agent
Adcisseckilled
·
Published
2025-04-10
·
Updated
2025-04-11
·
CVE-2025-0121
CVSS v4.0
6.8
Medium
| Vector | AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber |
Name of the Vulnerable Software and Affected Versions:
Palo Alto Networks Cortex XDR agent (affected versions not specified)
Description:
A null pointer dereference issue in the Palo Alto Networks Cortex XDR agent on Windows devices allows a low-privileged local Windows user to crash the agent. Additionally, malware can exploit this issue to perform malicious activities without being detected by Cortex XDR.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Palo Alto Networks Cortex Xdr Agent