Palo Alto Networks Cortex Xsoar vulnerabilities
10 known vulnerabilities affecting palo_alto_networks/cortex_xsoar.
Total CVEs
10
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM8
Vulnerabilities
Page 1 of 1
CVE-2024-9470MEDIUMCVSS 5.3≥ 6.12.0, < 6.12.0 (Build 1271551)2024-10-09
CVE-2024-9470 [MEDIUM] CWE-497 CVE-2024-9470: A vulnerability in Cortex XSOAR allows the disclosure of incident data to users who do not have the
A vulnerability in Cortex XSOAR allows the disclosure of incident data to users who do not have the privilege to view the data.
cvelistv5nvd
CVE-2023-3282MEDIUMCVSS 6.7≥ 6.10, < 6.10.0.2501442023-11-08
CVE-2023-3282 [MEDIUM] CWE-732 CVE-2023-3282: A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine softwa
A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system enables a local attacker to execute programs with elevated privileges if the attacker has shell access to the engine.
cvelistv5nvd
CVE-2023-0003MEDIUMCVSS 6.5≥ 6.10.0.0, < 6.10.0.185964≥ 6.9, < 6.9.B185415+2 more2023-02-08
CVE-2023-0003 [MEDIUM] CWE-73 CVE-2023-0003: A file disclosure vulnerability in the Palo Alto Networks Cortex XSOAR server software enables an au
A file disclosure vulnerability in the Palo Alto Networks Cortex XSOAR server software enables an authenticated user with access to the web interface to read local files from the server.
cvelistv5nvd
CVE-2022-0031MEDIUMCVSS 6.7≥ 6.9.0.0, < 6.9.0.130766v6.8.0.0+2 more2022-11-09
CVE-2022-0031 [MEDIUM] CWE-345 CVE-2022-0031: A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine softwa
A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system allows a local attacker with shell access to the engine to execute programs with elevated privileges.
cvelistv5nvd
CVE-2022-0027MEDIUMCVSS 4.3v6.1.*v6.2.*+2 more2022-05-11
CVE-2022-0027 [MEDIUM] CWE-285 CVE-2022-0027: An improper authorization vulnerability in Palo Alto Network Cortex XSOAR software enables authentic
An improper authorization vulnerability in Palo Alto Network Cortex XSOAR software enables authenticated users in non-Read-Only groups to generate an email report that contains summary information about all incidents in the Cortex XSOAR instance, including incidents to which the user does not have access. This issue impacts: All versions of Cortex XSO
cvelistv5nvd
CVE-2022-0020MEDIUMCVSS 5.4PoCv6.1.0 all≥ 6.2.0, < 19588882022-02-10
CVE-2022-0020 [MEDIUM] CWE-79 CVE-2022-0020: A stored cross-site scripting (XSS) vulnerability in Palo Alto Network Cortex XSOAR web interface en
A stored cross-site scripting (XSS) vulnerability in Palo Alto Network Cortex XSOAR web interface enables an authenticated network-based attacker to store a persistent javascript payload that will perform arbitrary actions in the Cortex XSOAR web interface on behalf of authenticated administrators who encounter the payload during normal operations. Thi
cvelistv5nvd
CVE-2021-3051HIGHCVSS 8.1≥ 5.5.0, < 1578677≥ 6.0.2, < 1576452+2 more2021-09-08
CVE-2021-3051 [HIGH] CWE-347 CVE-2021-3051: An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR SAML authen
An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR SAML authentication that enables an unauthenticated network-based attacker with specific knowledge of the Cortex XSOAR instance to access protected resources and perform unauthorized actions on the Cortex XSOAR server. This issue impacts: Cortex XSOAR 5.5.0 builds e
cvelistv5nvd
CVE-2021-3049MEDIUMCVSS 4.3v5.5.0 all≥ 6.1.0, < 120993452021-09-08
CVE-2021-3049 [MEDIUM] CWE-285 CVE-2021-3049: An improper authorization vulnerability in the Palo Alto Networks Cortex XSOAR server enables an aut
An improper authorization vulnerability in the Palo Alto Networks Cortex XSOAR server enables an authenticated network-based attacker with investigation read permissions to download files from incident investigations of which they are aware but are not a part of. This issue impacts: All Cortex XSOAR 5.5.0 builds; Cortex XSOAR 6.1.0 builds earlier than
cvelistv5nvd
CVE-2021-3044CRITICALCVSS 9.8≥ 1016923, < 6.1.0*≥ 6.2.0, < 12710652021-06-22
CVE-2021-3044 [CRITICAL] CWE-285 CVE-2021-3044: An improper authorization vulnerability in Palo Alto Networks Cortex XSOAR enables a remote unauthen
An improper authorization vulnerability in Palo Alto Networks Cortex XSOAR enables a remote unauthenticated attacker with network access to the Cortex XSOAR server to perform unauthorized actions through the REST API. This issue impacts: Cortex XSOAR 6.1.0 builds later than 1016923 and earlier than 1271064; Cortex XSOAR 6.2.0 builds earlier than 127
cvelistv5nvd
CVE-2021-3034MEDIUMCVSS 5.1≥ 5.5.0, < 98622≥ 6.0.2, < 98623+2 more2021-03-10
CVE-2021-3034 [MEDIUM] CWE-532 CVE-2021-3034: An information exposure through log file vulnerability exists in Cortex XSOAR software where the sec
An information exposure through log file vulnerability exists in Cortex XSOAR software where the secrets configured for the SAML single sign-on (SSO) integration can be logged to the '/var/log/demisto/' server logs when testing the integration during setup. This logged information includes the private key and identity provider certificate used to conf
cvelistv5nvd