An information exposure vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local system administrator to disclose the admin password for the agent in cleartext, which bad actors can then use to execute privileged cytool commands that disable or uninstall the agent.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: palo_alto

Published: 2023-02-08T17:20:20.774Z

Updated: 2024-08-02T04:54:32.569Z

Reserved: 2022-10-27T18:47:48.958Z

Link: CVE-2023-0001

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-02-08T18:15:11.523

Modified: 2024-11-21T07:36:22.050

Link: CVE-2023-0001

cve-icon Redhat

No data.