Privilege Escalation Vulnerability in Palo Alto Networks Cortex® XDR Broker VM
CVE-2026-0276

1.1LOW

Key Information:

Vendor
CVE Published:
9 July 2026

Badges

👾 Exploit Exists

What is CVE-2026-0276?

A privilege escalation vulnerability exists in Palo Alto Networks Cortex® XDR Broker VM, allowing a locally authenticated user to execute commands with root user privileges, potentially enabling unauthorized actions and compromising the integrity of the system.

Affected Version(s)

Cortex XDR Broker VM 20.0.96 < 31.0.58

References

CVSS V4

Score:
1.1
Severity:
LOW
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Palo Alto Networks thanks Martin Rougeron for discovering and reporting this issue
.