Security Advisory

CVE-2022-0026

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-11 16:30:25

Last updated 2024-09-17 01:26:10

Assigner palo_alto

State PUBLISHED

Description

A local privilege escalation (PE) vulnerability exists in Palo Alto Networks Cortex XDR agent software on Windows that enables an authenticated local user with file creation privilege in the Windows root directory (such as C:) to execute a program with elevated privileges. This issue impacts all versions of Cortex XDR agent without content update 330 or a later content update version.

← Browse all CVEs View on cve.org ↗