Primary

Context

Palo Alto Networks Cortex XDR Agent Protection Mechanism Vulnerability on macOS

Vulnerability

Patched

A vulnerability in the Palo Alto Networks Cortex XDR agent for macOS allows local administrators to disable the agent. This flaw could be exploited by malware to carry out malicious activities without being detected. The issue arises from an improper check for unusual conditions in the agent's protection mechanism.

Impact

Disabling the Cortex XDR agent could allow malware to execute harmful actions on the system without detection, potentially leading to a compromise of the device or its data.

Remediation

Users can upgrade to Cortex XDR Agent versions 8.9.0, 8.7.101-CE, 8.3.102-CE, or any later versions to address this vulnerability.

Added: Mar 11, 2026, 6:27 PM

Updated: Mar 11, 2026, 6:27 PM

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

5.4

exploitability

2.4

remediation

7.7

relevance

3.8

threat

0.0

urgency

5.7

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

5.4

exploitability

2.4

remediation

7.7

relevance

3.8

threat

0.0

urgency

5.7

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Palo Alto Networks Cortex XDR Agent Protection Mechanism Vulnerability on macOS

Vulnerability

Impact

Remediation

Affected Products

Palo Alto Networks Cortex XDR Agent

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating