Local privilege escalation vulnerability in Palo Alto Networks Cortex XDR agent for macOS
CVE-2026-0230

4MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Cortex Xdr Agent
Vendor: CVE Published:; 11 March 2026

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2026-0230?

A vulnerability exists in the Palo Alto Networks Cortex XDR agent installed on macOS systems, allowing a local administrator to disable the agent's protection mechanisms. This flaw could be exploited by malicious software, enabling it to carry out harmful activities without being detected, thereby posing a significant risk to system integrity and data security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Cortex XDR Agent macOS 8.7-CE < 8.7.101-CE

Cortex XDR Agent macOS 8.3-CE < 8.3.102-CE

Cortex XDR Agent macOS 9.1.0

References

https://security.paloaltonetworks.com/CVE-2026-0230

vendor-advisory

CVSS V4

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Mar 11, 2026
Vulnerability published
Mar 11, 2026
Vulnerability Reserved
Nov 3, 2025

Credit

Michael Roitzsch, Barkhausen Institut gGmbH Carsten Weinhold, Barkhausen Institut gGmbH

JSON

Palo Alto Networks

Badges

What is CVE-2026-0230?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V4

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.