Primary

Context

Palo Alto Networks Cortex XDR Broker VM Missing Authentication Vulnerability Allowing Service Disabling

Vulnerability

A missing authentication vulnerability exists in Palo Alto Networks Cortex XDR Broker VM versions prior to 26.0.119. This vulnerability allows an unauthenticated user with network access to the Broker VM to disable certain internal services, potentially disrupting functionality.

Impact

Exploitation of this vulnerability can lead to the unauthorized disabling of internal services on the affected Broker VM, which may disrupt normal operations or functionality.

Remediation

Users can upgrade to Cortex XDR Broker VM version 26.0.119 or later to address this vulnerability. For those who have not enabled automatic upgrades, it is recommended to do so to ensure the latest security patches are applied.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

5.7

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

5.7

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Palo Alto Networks Cortex XDR Broker VM Missing Authentication Vulnerability Allowing Service Disabling

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating