SB2024071623 - Multiple vulnerabilities in Palo Alto Networks Cortex XDR agent
Published: July 16, 2024 Updated: June 27, 2025
Security Bulletin ID
SB2024071623
Severity
Low
Patch available
YES
Number of vulnerabilities
2
Exploitation vector
Local access
Highest impact
Data manipulation
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Improper privilege management (CVE-ID: CVE-2024-5909)
The vulnerability allows a local user to compromise the target system.
The vulnerability exists due to improper privilege management. A local user can disable the agent.
2) Origin validation error (CVE-ID: CVE-2024-5905)
The vulnerability allows a local user to compromise the target system.
The vulnerability exists due to missing origin validation within the protection mechanism. A local user can disrupt some functionality of the agent.
Remediation
Install update from vendor's website.