Palo Alto Cortex XDR Agent till 5.0.11/6.1.8/7.2.3/7.3.1 på Windows Support File informationsgivning

Det var en problematiskt svag punkt upptäcktes i Palo Alto Cortex XDR Agent till 5.0.11/6.1.8/7.2.3/7.3.1 på Windows. Som påverkar en okänd funktion av komponenten Support File Handler. En uppgradering till den version 5.0.12, 6.1.9, 7.2.4 eller 7.3.2 att åtgärda problemet.

Tidslinje

Användare

132
019

Fält

source_cve_nvd_summary1
exploit_price_0day1
vulnerability_cvss3_meta_tempscore1
vulnerability_cvss3_meta_basescore1
vulnerability_cvss3_vuldb_tempscore1

Commit Conf

90%40
50%10
70%1

Approve Conf

90%40
80%10
70%1
IDEngageradAnvändareFältFörändraAnmärkningarAccepteradAnledningC
1205016415/01/2022VulD...cve_nvd_summaryA file information exposure vulnerability exists in the Palo Alto Networks Cortex XDR agent that enables a local attacker to read the contents of arbitrary files on the system with elevated privileges when generating a support file. This issue impacts: Cortex XDR agent 5.0 versions earlier than Cortex XDR agent 5.0.12; Cortex XDR agent 6.1 versions earlier than Cortex XDR agent 6.1.9; Cortex XDR agent 7.2 versions earlier than Cortex XDR agent 7.2.4; Cortex XDR agent 7.3 versions earlier than Cortex XDR agent 7.3.2.cve.mitre.org15/01/2022accepterad
70
1203754812/01/2022VulD...price_0day$0-$5ksee exploit price documentation12/01/2022accepterad
90
1203754712/01/2022VulD...cvss3_meta_tempscore4.2see CVSS documentation12/01/2022accepterad
90
1203754612/01/2022VulD...cvss3_meta_basescore4.2see CVSS documentation12/01/2022accepterad
90
1203754512/01/2022VulD...cvss3_vuldb_tempscore3.4see CVSS documentation12/01/2022accepterad
90
1203754412/01/2022VulD...cvss3_vuldb_basescore3.5see CVSS documentation12/01/2022accepterad
90
1203754312/01/2022VulD...cvss2_vuldb_tempscore3.5see CVSS documentation12/01/2022accepterad
90
1203754212/01/2022VulD...cvss2_vuldb_basescore4.0see CVSS documentation12/01/2022accepterad
90
1203754112/01/2022VulD...cvss3_cna_basescore5.0see CVSS documentation12/01/2022accepterad
90
1203754012/01/2022VulD...cvss3_vuldb_eXderived from historical data12/01/2022accepterad
80
1203753912/01/2022VulD...cvss2_vuldb_eNDderived from historical data12/01/2022accepterad
80
1203753812/01/2022VulD...cvss2_vuldb_auSderived from historical data12/01/2022accepterad
80
1203753712/01/2022VulD...cvss2_vuldb_rlOFderived from vuldb v3 vector12/01/2022accepterad
80
1203753612/01/2022VulD...cvss2_vuldb_rcCderived from vuldb v3 vector12/01/2022accepterad
80
1203753512/01/2022VulD...cvss2_vuldb_aiNderived from vuldb v3 vector12/01/2022accepterad
80
1203753412/01/2022VulD...cvss2_vuldb_iiNderived from vuldb v3 vector12/01/2022accepterad
80
1203753312/01/2022VulD...cvss2_vuldb_ciPderived from vuldb v3 vector12/01/2022accepterad
80
1203753212/01/2022VulD...cvss2_vuldb_acLderived from vuldb v3 vector12/01/2022accepterad
80
1203753112/01/2022VulD...cvss2_vuldb_avNderived from vuldb v3 vector12/01/2022accepterad
80
1203753012/01/2022VulD...date1641942000 (12/01/2022)12/01/2022accepterad
90

31 fler poster visas inte

Do you know our Splunk app?

Download it now for free!