PT-2025-6777 · Palo Alto Networks · Palo Alto Networks Cortex Xdr Broker Vm
Julian Imper
·
Published
2025-02-12
·
Updated
2025-04-09
·
CVE-2025-0113
CVSS v2.0
6.6
Medium
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
Palo Alto Networks Cortex XDR Broker VM (affected versions not specified)
Description
A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by the Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to the Cortex XDR server.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Palo Alto Networks Cortex Xdr Broker Vm