Improper File Signature Check Could Bypass Executable Blocking
CVE-2024-5912
Currently unrated 🤨
Key Information
- Vendor
- Palo Alto Networks
- Status
- Cortex Xdr Agent
- Vendor
- CVE Published:
- 10 July 2024
Badges
👾 Exploit Exists
Summary
An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked.
Affected Version(s)
Cortex XDR Agent >= 8.4
Cortex XDR Agent >= 8.3-CE
Cortex XDR Agent >= 8.3
Refferences
Timeline
Vulnerability published
Vulnerability Reserved
Collectors
NVD DatabaseMitre Database
Credit
Palo Alto Networks thanks the Cyber Defence Center of BITMARCK, and especially Maximilan Pappert for discovering and reporting this issue.