CVE-2023-3282 — Incorrect Permission Assignment in Palo Alto Networks Cortex Xsoar

CWE-732 — Incorrect Permission Assignment4 documents4 sources

Severity

6.7MEDIUMNVD

CNA6.4

EPSS

0.0%

top 92.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Palo Alto Networks Cortex Xsoar Paloaltonetworks Cortex Xsoar Paloalto Cortex Xsoar

Timeline

PublishedNov 8

Description

A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system enables a local attacker to execute programs with elevated privileges if the attacker has shell access to the engine.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages3 packages

▶NVDpaloaltonetworks/cortex_xsoar< 6.10.0

▶CVEListV5palo_alto_networks/cortex_xsoar6.10 — 6.10.0.250144

▶Palo Altopaloalto/cortex_xsoar

🔴Vulnerability Details

GHSA

GHSA-583v-xw8h-qw2h: A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system enables a l↗2023-11-08

▶

CVEList

Cortex XSOAR: Local Privilege Escalation (PE) Vulnerability in Cortex XSOAR Engine↗2023-11-08

▶

📋Vendor Advisories

Palo Alto

Cortex XSOAR: Local Privilege Escalation (PE) Vulnerability in Cortex XSOAR Engine↗2023-11-08

▶