Paloalto Cortex Xsoar vulnerabilities

CVE-2020-27619 [CRITICAL] Informational: Impact of Python Test Suite Vulnerability CVE-2020-27619 Informational: Impact of Python Test Suite Vulnerability CVE-2020-27619 The Palo Alto Networks Product Security Assurance team evaluated the Python test suite vulnerability CVE-2020-27619. There are no scenarios that enable successful exploitation of the vulnerability in Cortex XSOAR or PAN-OS software. No product release contains the Python test suite that is necessary to exploit this vulnerabili

CVE-2020-29509 [MEDIUM] PAN-SA-2021-0001 Informational: Cortex XSOAR: Impact of Golang XML parsing vulnerabilities PAN-SA-2021-0001 Informational: Cortex XSOAR: Impact of Golang XML parsing vulnerabilities The Palo Alto Networks Product Security Assurance team evaluated the vulnerabilities (CVE-2020-29509, CVE-2020-29510, and CVE-2020-29511) that impact the standard Golang XML parsing library. All versions of Cortex XSOAR use a version of Golang that contains these vulnerabilities but there are

CVE-2020-1971 [MEDIUM] PAN-SA-2020-0011 Informational: Impact of OpenSSL vulnerability CVE-2020-1971 PAN-SA-2020-0011 Informational: Impact of OpenSSL vulnerability CVE-2020-1971 Palo Alto Networks Product Security Assurance team has evaluated the vulnerability CVE-2020-1971 that affects the OpenSSL library. The vulnerability does not have a security impact on PAN-OS, GlobalProtect App, or Cortex XSOAR. The scenarios required for successful CVEs: CVE-2020-1971 Affected products: Cortex XSOAR,

CVE-2019-5736 [CRITICAL] CWE-216 PAN-SA-2020-0010 Informational: Cortex XSOAR: Impact of Linux and Docker vulnerabilities on Cortex XSOAR PAN-SA-2020-0010 Informational: Cortex XSOAR: Impact of Linux and Docker vulnerabilities on Cortex XSOAR Cortex XSOAR provides analysts with the option to specify the Docker image to use for running custom scripts and integrations. An analyst who has write permission to scripts or integrations is able to exploit Docker vulnerabilities such as CVE-2019-5736, o