Primary

Context

Palo Alto Networks Cortex XDR Broker VM Command Injection Vulnerability

Vulnerability

A command injection vulnerability exists in the Palo Alto Networks Cortex XDR Broker VM, allowing authenticated users to execute arbitrary operating system commands with root privileges on the host machine running the Broker VM. This vulnerability affects versions of Cortex XDR Broker VM prior to 26.100.3.

Impact

Exploitation of this vulnerability allows for unauthorized execution of commands with root privileges on the host operating system, potentially leading to unauthorized access or modification of system resources.

Remediation

Users can upgrade to Cortex XDR Broker VM version 26.100.3 or later to address this vulnerability. If automatic upgrades are not enabled, it is recommended to do so to ensure the latest security patches are applied.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

5.7

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

5.7

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Palo Alto Networks Cortex XDR Broker VM Command Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating