Privilege Escalation Vulnerability in Palo Alto Networks Cortex® XDR Broker VM
CVE-2026-0276
1.1LOW
Key Information:
- Vendor
Palo Alto Networks
- Status
- Vendor
- CVE Published:
- 9 July 2026
Badges
👾 Exploit Exists
What is CVE-2026-0276?
A privilege escalation vulnerability exists in Palo Alto Networks Cortex® XDR Broker VM, allowing a locally authenticated user to execute commands with root user privileges, potentially enabling unauthorized actions and compromising the integrity of the system.
Affected Version(s)
Cortex XDR Broker VM 20.0.96 < 31.0.58
References
CVSS V4
Score:
1.1
Severity:
LOW
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
- 👾
Exploit known to exist
Vulnerability published
Vulnerability Reserved
Credit
Palo Alto Networks thanks Martin Rougeron for discovering and reporting this issue