CVE-2023-3280 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-3280 PUBLISHED CVSS 5.5 MEDIUM

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to disable the agent.

EPSS 0.08% · 23.3th percentile

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.08%

23.3th percentile

Affected Products

Vendor	Product	Versions
paloaltonetworks	cortex_xdr_agent	5.0, 7.9.0, 7.9.0
Palo Alto Networks	Cortex XDR Agent	5.0, 7.5-CE, 7.9

Timeline

Sep 13, 2023 CVE Published
Sep 13, 2023 PoC Published
Sep 14, 2023 EPSS Score
Oct 16, 2023 EPSS Score
Nov 17, 2023 EPSS Score
Dec 18, 2023 EPSS Score
Jan 19, 2024 EPSS Score
Feb 20, 2024 EPSS Score
Mar 23, 2024 EPSS Score
Apr 24, 2024 EPSS Score
May 25, 2024 EPSS Score
Jun 26, 2024 EPSS Score

References

Open in Interactive Console →