4.4

CVE-2026-0232

Cortex XDR Agent: Local Administrator can disable the agent on Windows

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows allows a local Windows administrator to disable the agent. This issue may be leveraged by malware to perform malicious activity without detection.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PaloaltonetworksCortex Xdr Agent SwEditioncritical_environment Version >= 8.7.0 < 8.7.101
   MicrosoftWindows Version-
PaloaltonetworksCortex Xdr Agent Version7.9 SwEditioncritical_environment
   MicrosoftWindows Version-
PaloaltonetworksCortex Xdr Agent Version8.3 SwEditioncritical_environment
   MicrosoftWindows Version-
PaloaltonetworksCortex Xdr Agent Version8.9.0 Update- SwEdition-
   MicrosoftWindows Version-
PaloaltonetworksCortex Xdr Agent Version9.0.0 Update- SwEdition-
   MicrosoftWindows Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.042
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.4 0.8 3.6
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
psirt@paloaltonetworks.com 4 0 0
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:D/RE:M/U:Amber
CWE-15 External Control of System or Configuration Setting

One or more system settings or configuration elements can be externally controlled by a user.

https://security.paloaltonetworks.com/CVE-2026-0232
Vendor Advisory