Palo Alto Networks Cortex XSOAR
Moderate fix1 remedy
cpe:2.3:a:paloaltonetworks:cortex_xsoar:*:*:*:*:*:*:*
Moderate fix1 remedy
- >= 1.5.0, < 1.5.52
Cortex XSOAR and XSIAM Improper Cryptographic Signature Verification Vulnerability in Microsoft Teams Integration
Vulnerability
Patched
A vulnerability allowing improper verification of cryptographic signatures has been identified in the Cortex XSOAR and Cortex XSIAM platforms. This issue arises during the integration with Microsoft Teams, enabling an unauthenticated user to access and modify protected resources. The vulnerability affects Cortex XSOAR and Cortex XSIAM Microsoft Teams Marketplace versions 1.5.0 prior to 1.5.52.
Impact
Exploitation of this vulnerability could allow an unauthenticated user to access and alter protected resources within the affected applications.
Remediation
Users can upgrade to version 1.5.52 or later to address this vulnerability. Instructions for updating can be found on the Palo Alto Networks support site.
Added: Apr 13, 2026, 8:59 AM
Updated: Apr 13, 2026, 8:59 AM
Vulnerability Rating
Custom Algorithm
spread
2.6impact
1.3exploitability
6.3remediation
7.7relevance
5.8threat
0.0urgency
10.0incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.