VDB
CVE-2023-0001
CVE-2023-0001
PUBLISHED
CVSS 6 MEDIUM
An information exposure vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local system administrator to disclose the admin password for the agent in cleartext, which bad actors can then use to execute privileged cytool commands that disable or uninstall the agent.
EPSS 0.47% · 64.8th percentile
Risk Scores
CVSS 3.1
6
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H
EPSS Score
0.47%
64.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Palo Alto Networks | Cortex XDR agent | 7.9 All, 7.8 All, 7.5 |
| paloaltonetworks | cortex_xdr_agent | 7.5 |
Exploit Intelligence
- CIRCL seen: CVE-2023-0001 (circl-sighting)
- CIRCL seen: CVE-2023-0001 (circl-sighting)
- CIRCL seen: CVE-2023-0001 (circl-sighting)
- https://security.paloaltonetworks.com/CVE-2023-0001 (circl)
- JsonScanResultV1ToScanResultAdapter.test.ts (github-poc)
- SecurityPatchStateTest.kt (github-poc)
- SecurityPatchStateTest.kt (github-poc)
- SecurityPatchStateTest.kt (github-poc)
- SecurityPatchStateTest.kt (github-poc)
- JsonScanResultV1ToScanResultAdapter.test.ts (github-poc)
…and 6 more exploits
Timeline
- Feb 8, 2023 CVE Published
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 21, 2023 EPSS Score
- Apr 30, 2023 EPSS Score
- Jun 9, 2023 EPSS Score
- Jul 18, 2023 EPSS Score
- Aug 27, 2023 EPSS Score
- Oct 6, 2023 EPSS Score
- Nov 15, 2023 EPSS Score
- Dec 25, 2023 EPSS Score
- Feb 3, 2024 EPSS Score
References
- https://security.paloaltonetworks.com/CVE-2023-0001 url
- https://nvd.nist.gov/vuln/detail/CVE-2023-0001 advisory
- http://www.openwall.com/lists/oss-security/2023/11/08/10 url
- http://www.openwall.com/lists/oss-security/2023/11/08/2 url
- http://www.openwall.com/lists/oss-security/2023/11/08/3 url
- http://www.openwall.com/lists/oss-security/2023/11/08/5 url
- http://www.openwall.com/lists/oss-security/2023/11/10/1 url