Missing Authentication Vulnerability in Cortex XDR® Broker VM by Palo Alto Networks
CVE-2025-0132

6.9MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Cortex Xdr Broker Vm
Vendor: CVE Published:; 14 May 2025

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-0132?

A missing authentication vulnerability exists in Palo Alto Networks Cortex XDR® Broker VM, which allows an attacker with network access to the Broker VM to disable critical internal services. This unauthenticated access poses a significant risk as it can lead to potential disruptions in security monitoring and management functionalities within the Cortex XDR environment.

Affected Version(s)

Cortex XDR Broker VM 26.0.0 < 26.0.119

References

https://security.paloaltonetworks.com/CVE-2025-0132

vendor-advisory

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
May 14, 2025
Vulnerability published
May 14, 2025
Vulnerability Reserved
Dec 20, 2024

Credit

Bartosz Chałek

Piotr Kozowicz of CERT Team of ING Bank Slaski