CVE-2024-5912Improper Verification of Cryptographic Signature in Palo Alto Networks Cortex XDR Agent

CWE-347Improper Verification of Cryptographic Signature4 documents4 sources
Severity
6.8MEDIUMNVD
EPSS
0.0%
top 97.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Palo Alto Networks Cortex XDR AgentPaloalto Cortex XDR Agent
Timeline
PublishedJul 10

Description

An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5palo_alto_networks/cortex_xdr_agent7.9-CE7.9.102-CE+1

🔴Vulnerability Details

2
GHSA
GHSA-wjvm-2xmx-5vhg: An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking cap2024-07-10
CVEList
Cortex XDR Agent: Improper File Signature Verification Checks2024-07-10

📋Vendor Advisories

1
Palo Alto
Cortex XDR Agent: Improper File Signature Verification Checks2024-07-10
CVE-2024-5912 — Palo vulnerability | cvebase