Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 09/12/2020 Updated: 16/12/2020

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

A local privilege escalation vulnerability exists in Palo Alto Networks Cortex XDR Agent on the Windows platform that allows an authenticated local Windows user to execute programs with SYSTEM privileges. This requires the user to have the privilege to create files in the Windows root directory. This issue impacts: All versions of Cortex XDR Agent 7.1 with content update 149 and previous versions versions; All versions of Cortex XDR Agent 7.2 with content update 149 and previous versions versions.

Vulnerable Product	Search on Vulmon	Subscribe to Product
paloaltonetworks cortex_xdr_agent 7.1
paloaltonetworks cortex_xdr_agent
paloaltonetworks cortex_xdr_agent 7.2

CWE-427 https://security.paloaltonetworks.com/CVE-2020-2049 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-2049

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect