CVE-2023-0001 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-0001 PUBLISHED CVSS 6 MEDIUM

An information exposure vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local system administrator to disclose the admin password for the agent in cleartext, which bad actors can then use to execute privileged cytool commands that disable or uninstall the agent.

EPSS 0.55% · 67.9th percentile

Risk Scores

CVSS v3.1

6

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H

EPSS Score

0.55%

67.9th percentile

Affected Products

Vendor	Product	Versions
Palo Alto Networks	Cortex XDR agent	7.9 All, 7.8 All, 7.5
paloaltonetworks	cortex_xdr_agent	7.5

Timeline

Feb 8, 2023 CVE Published
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 20, 2023 EPSS Score
Apr 29, 2023 EPSS Score
Jun 7, 2023 EPSS Score
Jul 16, 2023 EPSS Score
Aug 24, 2023 EPSS Score
Oct 3, 2023 EPSS Score
Nov 11, 2023 EPSS Score
Dec 20, 2023 EPSS Score
Jan 28, 2024 EPSS Score

References

Open in Interactive Console →